Module Name:	pkgsrc
Committed By:	martti
Date:		Tue Jul 25 05:04:29 UTC 2006

Modified Files:
	pkgsrc/mail/postfix: Makefile distinfo

Log Message:
Updated mail/postfix to 2.3.1

Main changes in TLS support:

- The Postfix SMTP client enforced mandatory TLS only when talking
  to an ESMTP server; enforcement did not happen if Postfix could
  somehow be forced to send HELO instead of EHLO. This problem also
  exists in Postfix 2.2, where it is is fixed with Postfix 2.2
  patch 11.  This is minor compared to the DNS spoofing issues that
  were fixed with Postfix 2.2.10.

- Workaround for an interoperability problem introduced with Postfix
  2.3.  Some buggy TLS client implementations were unable to deliver
  mail because the Postfix SMTP server didn't send a TLS session
  ID. To disable the workaround specify "smtpd_tls_always_issue_session_ids
  = no"; this allows non-buggy TLS clients to save some space.

Main changes in Milter support:

- Safety measure. After "postsuper -r", mail is no longer inspected
  by the Milters specified with the non_smtpd_milters parameter.
  This measure prevents a bad interaction with external content
  filters: Milters would receive incorrect SMTP client information,
  and could be tricked into signing or allowing untrusted messages.
  This change does not affect Milter applications that run behind
  an after-queue content filter. The behavior is detailed in the
  postsuper(1) manual page.


To generate a diff of this commit:
cvs rdiff -r1.183 -r1.184 pkgsrc/mail/postfix/Makefile
cvs rdiff -r1.99 -r1.100 pkgsrc/mail/postfix/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.