CVS commit: pkgsrc/mail/spamdyke

["Amitai Schlair" <schmonz%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   schmonz
Date:           Tue Jan 17 00:21:16 UTC 2012

Modified Files:
        pkgsrc/mail/spamdyke: Makefile distinfo

Log Message:
Update to 4.3.0. From the changelog:

This version adds the ability to filter messages based on the content
of their headers. Please note that enabling this feature should
be accompanied by disabling the use of the "softlimit" program. In
addition to fixing some small bugs and a compiling error on Debian
7, it also fixes a series of major bugs that could lead to buffer
overflows. Depending on spamdyke's configuration, these could cause
remotely exploitable security holes. Please upgrade immediately!

Looks like there's a bug in the header blacklist filter. Don't
enable that filter yet.

  Fixed config-test message for a graylist domain folder when the domain is not
    in the list of local domains from ERROR to INFO. Thanks to Eric Shubert
    for reporting this one.
  Fixed a bunch of copy-and-paste errors in the option_list array in
    prepare_settings() where options were designated
    CONFIG_TYPE_STRING_SINGLETON instead of CONFIG_TYPE_OPTION_SINGLETON or
    CONFIG_TYPE_STRING_ARRAY instead of CONFIG_TYPE_OPTION_ARRAY.
  Fixed configure script errors and compilation warnings on Debian 7, which
    enables the new GCC flags -Waddress and -Wunused-but-set-variable by
    default.  Thanks to Steve Cole for reporting this one.
  Added some explanitory comments to spamdyke.h and spamdyke.c.
  Added FILTER_FLAG_RETAIN and modified middleman() to buffer any data as long
    as it is given.
  Added FILTER_FLAG_CHILD_RESPONSE_INTERCEPT and modified middleman() to discard
    any input from qmail when it is given.
  Added FILTER_FLAG_DATA_CAPTURE and modified middleman() to capture qmail's
    response to the end of the message data when it is given.
  Fixed output_writeln() to send the data in bursts if more than one line is
    given and no CRs need to be inserted.  Previously, all data was sent
    line-by-line, even though middleman() was trying to send bursts of data when
    possible.
  Changed middleman() to buffer the names of the accepted recipients until after
    the message data is sent, then check qmail's response to the message body
    and print ALLOWED/DENIED for each recipient accordingly, along with the text
    of qmail's response.
  Added the options header-blacklist-entry and header-blacklist-file to block
    messages based on the contents of their headers.
  Added the option rejection-text-header-blacklist to control the message from
    the header blacklist filter.
  Added a flag to smtpdummy to force it to reject all message content with an
    error.
  Added a more complete usage message to smtpdummy.
  Fixed a number of very serious errors in the usage of snprintf()/vsnprintf().
    The return value was being used as the length of the string printed into
    the buffer, but the return value really indicates the length of the string
    that *could* be printed if the buffer were of infinite size. Because the
    returned value could be larger than the buffer's size, this meant remotely
    exploitable buffer overflows were possible, depending on spamdyke's
    configuration.
  Added options to smtpdummy to make it appear to process authentication (and
    unconditionally succeed or fail).
  Changed the ALLOWED log message to show the text given by qmail when the
    message is accepted.


To generate a diff of this commit:
cvs rdiff -u -r1.27 -r1.28 pkgsrc/mail/spamdyke/Makefile
cvs rdiff -u -r1.26 -r1.27 pkgsrc/mail/spamdyke/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.