annotate ChangeLog @ 234:1c45d50cbbc6

Added tag stable-6-0-23 for changeset 5c3e9bf45bb5
author Carl Byington <carl@five-ten-sg.com>
date Mon, 25 May 2009 17:48:40 -0700
parents 5c3e9bf45bb5
children e6c66640f6f9
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
233
5c3e9bf45bb5 Add whitelisting by regex expression filtering.
Carl Byington <carl@five-ten-sg.com>
parents: 231
diff changeset
1 6.23 2009-05-25
5c3e9bf45bb5 Add whitelisting by regex expression filtering.
Carl Byington <carl@five-ten-sg.com>
parents: 231
diff changeset
2 Add whitelisting by regex expression filtering.
5c3e9bf45bb5 Add whitelisting by regex expression filtering.
Carl Byington <carl@five-ten-sg.com>
parents: 231
diff changeset
3 Add queueid to whitelist extension log message.
5c3e9bf45bb5 Add whitelisting by regex expression filtering.
Carl Byington <carl@five-ten-sg.com>
parents: 231
diff changeset
4
230
ad38575e98ca Prevent auto whitelisting due to outgoing multipart/report delivery notifications.
Carl Byington <carl@five-ten-sg.com>
parents: 227
diff changeset
5 6.22 2009-05-08
ad38575e98ca Prevent auto whitelisting due to outgoing multipart/report delivery notifications.
Carl Byington <carl@five-ten-sg.com>
parents: 227
diff changeset
6 Prevent auto whitelisting due to outgoing multipart/report
ad38575e98ca Prevent auto whitelisting due to outgoing multipart/report delivery notifications.
Carl Byington <carl@five-ten-sg.com>
parents: 227
diff changeset
7 delivery notifications.
231
4d6bd04d93fa Fix memory leak in suppressed auto whitelisting.
Carl Byington <carl@five-ten-sg.com>
parents: 230
diff changeset
8 Fix memory leak in suppressed auto whitelisting.
230
ad38575e98ca Prevent auto whitelisting due to outgoing multipart/report delivery notifications.
Carl Byington <carl@five-ten-sg.com>
parents: 227
diff changeset
9
227
3fee608becbc Fixes to compile on old systems without memrchr or string::clear().
Carl Byington <carl@five-ten-sg.com>
parents: 216
diff changeset
10 6.21 2009-01-03
3fee608becbc Fixes to compile on old systems without memrchr or string::clear().
Carl Byington <carl@five-ten-sg.com>
parents: 216
diff changeset
11 Fixes to compile on old systems without memrchr or string::clear().
3fee608becbc Fixes to compile on old systems without memrchr or string::clear().
Carl Byington <carl@five-ten-sg.com>
parents: 216
diff changeset
12 Fix bug in spamassassin interface trying to clear a string with
3fee608becbc Fixes to compile on old systems without memrchr or string::clear().
Carl Byington <carl@five-ten-sg.com>
parents: 216
diff changeset
13 string::empty().
3fee608becbc Fixes to compile on old systems without memrchr or string::clear().
Carl Byington <carl@five-ten-sg.com>
parents: 216
diff changeset
14
216
784030ac71f1 Never whitelist self addressed mail. Changes for Fedora 10 and const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 214
diff changeset
15 6.20 2008-12-27
784030ac71f1 Never whitelist self addressed mail. Changes for Fedora 10 and const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 214
diff changeset
16 Never whitelist self addressed mail. Spammers are once again
784030ac71f1 Never whitelist self addressed mail. Changes for Fedora 10 and const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 214
diff changeset
17 sending mail from A to A trying to get around filters. Changes
784030ac71f1 Never whitelist self addressed mail. Changes for Fedora 10 and const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 214
diff changeset
18 for Fedora 10 and const correctness.
784030ac71f1 Never whitelist self addressed mail. Changes for Fedora 10 and const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 214
diff changeset
19
214
82886d4dd71f Fixes to compile on Fedora 9 and for const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 211
diff changeset
20 6.19 2008-06-10
82886d4dd71f Fixes to compile on Fedora 9 and for const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 211
diff changeset
21 Fixes to compile on Fedora 9 and for const correctness.
82886d4dd71f Fixes to compile on Fedora 9 and for const correctness.
Carl Byington <carl@five-ten-sg.com>
parents: 211
diff changeset
22
211
4db1457cd11a Extend auto-whitelisting when receiving mail even if the auto whitelist is specified in a parent context.
Carl Byington <carl@five-ten-sg.com>
parents: 203
diff changeset
23 6.18 2008-03-22
4db1457cd11a Extend auto-whitelisting when receiving mail even if the auto whitelist is specified in a parent context.
Carl Byington <carl@five-ten-sg.com>
parents: 203
diff changeset
24 Extend auto-whitelisting when receiving mail even if the auto
4db1457cd11a Extend auto-whitelisting when receiving mail even if the auto whitelist is specified in a parent context.
Carl Byington <carl@five-ten-sg.com>
parents: 203
diff changeset
25 whitelist is specified in a parent context. Fixes for Solaris from sm-archive.
4db1457cd11a Extend auto-whitelisting when receiving mail even if the auto whitelist is specified in a parent context.
Carl Byington <carl@five-ten-sg.com>
parents: 203
diff changeset
26
203
92a5c866bdfa Verify from/to pairs even if they might be explicitly whitelisted.
Carl Byington <carl@five-ten-sg.com>
parents: 201
diff changeset
27 6.17 2008-03-04
92a5c866bdfa Verify from/to pairs even if they might be explicitly whitelisted.
Carl Byington <carl@five-ten-sg.com>
parents: 201
diff changeset
28 Verify from/to pairs even if they might be explicitly whitelisted.
92a5c866bdfa Verify from/to pairs even if they might be explicitly whitelisted.
Carl Byington <carl@five-ten-sg.com>
parents: 201
diff changeset
29 Document DCC greylisting and bulk detection usage. Fix DCC bulk
92a5c866bdfa Verify from/to pairs even if they might be explicitly whitelisted.
Carl Byington <carl@five-ten-sg.com>
parents: 201
diff changeset
30 thresholds of many. Update spec file for fedora packaging.
92a5c866bdfa Verify from/to pairs even if they might be explicitly whitelisted.
Carl Byington <carl@five-ten-sg.com>
parents: 201
diff changeset
31
201
752d4315675c add reference to mercurial repository in the documentation
Carl Byington <carl@five-ten-sg.com>
parents: 195
diff changeset
32 6.16 2008-02-02
752d4315675c add reference to mercurial repository in the documentation
Carl Byington <carl@five-ten-sg.com>
parents: 195
diff changeset
33 Switch to Mercurial source control.
98
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
34
195
797299e9fffc fix null dereference if missing _ macro
carl
parents: 192
diff changeset
35 6.15 2007-12-07
797299e9fffc fix null dereference if missing _ macro
carl
parents: 192
diff changeset
36 Fix null pointer dereference if macro _ not passed to this milter.
797299e9fffc fix null dereference if missing _ macro
carl
parents: 192
diff changeset
37 Default sendmail config passes that in the connect call.
797299e9fffc fix null dereference if missing _ macro
carl
parents: 192
diff changeset
38
192
8f4a9a37d4d9 delay autowhitelisting to avoid out of office reply bots
carl
parents: 190
diff changeset
39 6.14 2007-11-11
8f4a9a37d4d9 delay autowhitelisting to avoid out of office reply bots
carl
parents: 190
diff changeset
40 Delay auto whitelisting until we see the headers, to prevent
8f4a9a37d4d9 delay autowhitelisting to avoid out of office reply bots
carl
parents: 190
diff changeset
41 auto whitelisting due to bulk out of office reply bots.
8f4a9a37d4d9 delay autowhitelisting to avoid out of office reply bots
carl
parents: 190
diff changeset
42
187
f0eda59e8afd fix null pointer dereference from missing HELO command
carl
parents: 185
diff changeset
43 6.13 2007-11-10
f0eda59e8afd fix null pointer dereference from missing HELO command
carl
parents: 185
diff changeset
44 HELO command is optional, and if missing caused a null pointer
190
004b855c6c1f fix null pointer dereference from missing HELO command
carl
parents: 189
diff changeset
45 dereference. Use smfi_progress in libmilter if it is available.
187
f0eda59e8afd fix null pointer dereference from missing HELO command
carl
parents: 185
diff changeset
46
185
505283ab296c smtp rejections take precendence over greylisting
carl
parents: 184
diff changeset
47 6.12 2007-10-13
505283ab296c smtp rejections take precendence over greylisting
carl
parents: 184
diff changeset
48 SMTP rejections take precedence over greylisting.
505283ab296c smtp rejections take precendence over greylisting
carl
parents: 184
diff changeset
49
184
0e15a805d295 embedded dcc filtering
carl
parents: 179
diff changeset
50 6.11 2007-10-07
178
d6531c702be3 embedded dcc filtering
carl
parents: 177
diff changeset
51 Add DCC filtering via dccifd. Drop to 60 seconds the time we will
d6531c702be3 embedded dcc filtering
carl
parents: 177
diff changeset
52 keep idle smtp verify sockets around. This needs to be about half
d6531c702be3 embedded dcc filtering
carl
parents: 177
diff changeset
53 the value of confTO_COMMAND configured on the verify targets.
d6531c702be3 embedded dcc filtering
carl
parents: 177
diff changeset
54 Fix potential race condition or buffer overflow caused by static
d6531c702be3 embedded dcc filtering
carl
parents: 177
diff changeset
55 buffer referenced by multiple threads.
177
a4d313c2460b start embedded dcc filtering
carl
parents: 176
diff changeset
56
174
da0c41b9f672 don't whitelist addresses with embedded spaces
carl
parents: 173
diff changeset
57 6.10 2007-09-23
da0c41b9f672 don't whitelist addresses with embedded spaces
carl
parents: 173
diff changeset
58 Don't whitelist addresses with embedded blanks, or the empty
176
4ec928b24bab allow manual whitelisting with stamp 1 to remove a whitelist entry
carl
parents: 174
diff changeset
59 path. Allow manual removal of auto whitelist entries.
174
da0c41b9f672 don't whitelist addresses with embedded spaces
carl
parents: 173
diff changeset
60
173
83fe0be032c1 fix leak, update timestamps when receiving auto-whitelisted sender
carl
parents: 172
diff changeset
61 6.09 2007-09-06
83fe0be032c1 fix leak, update timestamps when receiving auto-whitelisted sender
carl
parents: 172
diff changeset
62 Fix memory leak in auto-whitelisting code. Update auto-whitelist
83fe0be032c1 fix leak, update timestamps when receiving auto-whitelisted sender
carl
parents: 172
diff changeset
63 timestamps when receiving mail from auto-whitelisted senders.
83fe0be032c1 fix leak, update timestamps when receiving auto-whitelisted sender
carl
parents: 172
diff changeset
64
172
d3189495ec68 don't do generic rdns filtering on whitelisted recipients
carl
parents: 169
diff changeset
65 6.08 2007-08-30
d3189495ec68 don't do generic rdns filtering on whitelisted recipients
carl
parents: 169
diff changeset
66 Don't do generic reverse dns filtering on authenticated connections.
d3189495ec68 don't do generic rdns filtering on whitelisted recipients
carl
parents: 169
diff changeset
67
168
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
68 6.07 2007-08-30
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
69 Add generic reverse dns filtering with regular expression.
169
44021d570958 fix pre/post scripts in rpm spec file
carl
parents: 168
diff changeset
70 Fix pre/post scripts in the rpm spec file.
168
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
71
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
72 6.06 2007-08-27
167
9b129ed78d7d actually use spamassassin result, allow build without spam assassin, only call it if some recipient needs it.
carl
parents: 165
diff changeset
73 Fix bug that effectively disabled spamassassin filtering. Improve
9b129ed78d7d actually use spamassassin result, allow build without spam assassin, only call it if some recipient needs it.
carl
parents: 165
diff changeset
74 spamassassin filtering documentation. Generate warning if the
9b129ed78d7d actually use spamassassin result, allow build without spam assassin, only call it if some recipient needs it.
carl
parents: 165
diff changeset
75 config file specifies spam assassin filtering, but spamc is not
9b129ed78d7d actually use spamassassin result, allow build without spam assassin, only call it if some recipient needs it.
carl
parents: 165
diff changeset
76 found by autoconf.
9b129ed78d7d actually use spamassassin result, allow build without spam assassin, only call it if some recipient needs it.
carl
parents: 165
diff changeset
77
168
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
78 6.05 2007-08-26
165
bf828f785407 fix unitialized variable
carl
parents: 162
diff changeset
79 Fix unitialized variable in my spamassassin code.
bf828f785407 fix unitialized variable
carl
parents: 162
diff changeset
80
168
6bac960af6b4 add generic reverse dns filtering regex
carl
parents: 167
diff changeset
81 6.04 2007-08-26
165
bf828f785407 fix unitialized variable
carl
parents: 162
diff changeset
82 Add spamassassin integration via spamc, code from spamass-milter.
bf828f785407 fix unitialized variable
carl
parents: 162
diff changeset
83
162
c4bce911c276 don't add auto whitelist for A to A
carl
parents: 160
diff changeset
84 6.03 2007-07-14
c4bce911c276 don't add auto whitelist for A to A
carl
parents: 160
diff changeset
85 Don't add auto whitelist entries for our own domains.
c4bce911c276 don't add auto whitelist for A to A
carl
parents: 160
diff changeset
86
160
b3ed72ee6564 allow manual updates to auto whitelist files
carl
parents: 152
diff changeset
87 6.02 2007-07-10
b3ed72ee6564 allow manual updates to auto whitelist files
carl
parents: 152
diff changeset
88 Allow manual updates to the auto whitelisting files, mainly for
b3ed72ee6564 allow manual updates to auto whitelist files
carl
parents: 152
diff changeset
89 scp or rsync synchronization between primary and backup mx
b3ed72ee6564 allow manual updates to auto whitelist files
carl
parents: 152
diff changeset
90 systems.
b3ed72ee6564 allow manual updates to auto whitelist files
carl
parents: 152
diff changeset
91
152
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
92 6.01 2007-07-07
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
93 GPL3. Block mail to recipients that cannot reply. Start auto
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
94 whitelisting.
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
95
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
96 5.30 2007-06-09
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
97 Selinux fix - redirect stdout for useradd to make selinux happy.
c7fc218686f5 gpl3, block mail to recipients that cannot reply
carl
parents: 151
diff changeset
98
151
0e8ec3c483ce limit dns resolver timeouts and retry interval
carl
parents: 150
diff changeset
99 5.29 2007-03-27
150
a23ef169d322 limit dns resolver timeouts and retry interval
carl
parents: 149
diff changeset
100 Limit dns resolver to two retries five seconds apart.
a23ef169d322 limit dns resolver timeouts and retry interval
carl
parents: 149
diff changeset
101
149
9581f6e62574 switch to second context wins in all cases
carl
parents: 148
diff changeset
102 5.28 2007-02-19
9581f6e62574 switch to second context wins in all cases
carl
parents: 148
diff changeset
103 Change the conflict resolution algorithm to "second one wins" if we
9581f6e62574 switch to second context wins in all cases
carl
parents: 148
diff changeset
104 have two contexts that both define env_to user@. Update ICANN tld
9581f6e62574 switch to second context wins in all cases
carl
parents: 148
diff changeset
105 list.
9581f6e62574 switch to second context wins in all cases
carl
parents: 148
diff changeset
106
148
9330b8d6a56b add documentation fixes, allow env_from target of inherit
carl
parents: 147
diff changeset
107 5.27 2007-01-30
9330b8d6a56b add documentation fixes, allow env_from target of inherit
carl
parents: 147
diff changeset
108 Allow 'inherit' as an env_from target. Documentation cleanup
9330b8d6a56b add documentation fixes, allow env_from target of inherit
carl
parents: 147
diff changeset
109 from G.W. Haywood.
9330b8d6a56b add documentation fixes, allow env_from target of inherit
carl
parents: 147
diff changeset
110
147
812c80305f26 fix 5.23 bug and add fsa debug logging
carl
parents: 145
diff changeset
111 5.26 2006-12-04
812c80305f26 fix 5.23 bug and add fsa debug logging
carl
parents: 145
diff changeset
112 Fix bug in content filtering introduced in 5.23 that prevented
812c80305f26 fix 5.23 bug and add fsa debug logging
carl
parents: 145
diff changeset
113 seeing any host names in the body.
812c80305f26 fix 5.23 bug and add fsa debug logging
carl
parents: 145
diff changeset
114
145
9b9bab1d3c21 dump effective dnsbl_list with -c switch
carl
parents: 144
diff changeset
115 5.25 2006-10-15
9b9bab1d3c21 dump effective dnsbl_list with -c switch
carl
parents: 144
diff changeset
116 DNSBL lists are inherited, so dump the effective list with the
9b9bab1d3c21 dump effective dnsbl_list with -c switch
carl
parents: 144
diff changeset
117 -c switch.
9b9bab1d3c21 dump effective dnsbl_list with -c switch
carl
parents: 144
diff changeset
118
144
31ff00ea6bfb allow parent/child to share a fully qualified env_to address
carl
parents: 143
diff changeset
119 5.24 2006-10-15
31ff00ea6bfb allow parent/child to share a fully qualified env_to address
carl
parents: 143
diff changeset
120 Allow child and parent context to specify the same fully qualified
31ff00ea6bfb allow parent/child to share a fully qualified env_to address
carl
parents: 143
diff changeset
121 env_to address. Only dump the rate limit for the default context
31ff00ea6bfb allow parent/child to share a fully qualified env_to address
carl
parents: 143
diff changeset
122 with -c switch.
31ff00ea6bfb allow parent/child to share a fully qualified env_to address
carl
parents: 143
diff changeset
123
143
ecb40aa3eaa5 require two periods for ip addresses
carl
parents: 140
diff changeset
124 5.23 2006-10-10
ecb40aa3eaa5 require two periods for ip addresses
carl
parents: 140
diff changeset
125 Require two periods in ip addresses.
ecb40aa3eaa5 require two periods for ip addresses
carl
parents: 140
diff changeset
126
140
4028de9b46dd cleanup smtp rate limit code
carl
parents: 136
diff changeset
127 5.22 2006-09-27
4028de9b46dd cleanup smtp rate limit code
carl
parents: 136
diff changeset
128 Change syntax for default rate limit. Improve hourly reset of
4028de9b46dd cleanup smtp rate limit code
carl
parents: 136
diff changeset
129 limits. Warning for rate limits in non default contexts to allow
4028de9b46dd cleanup smtp rate limit code
carl
parents: 136
diff changeset
130 nesting of client configurations.
4028de9b46dd cleanup smtp rate limit code
carl
parents: 136
diff changeset
131
136
f4746d8a12a3 add smtp auth rate limits
carl
parents: 134
diff changeset
132 5.21 2006-09-26
f4746d8a12a3 add smtp auth rate limits
carl
parents: 134
diff changeset
133 Add SMTP AUTH recipient rate limits, to help throttle infected
f4746d8a12a3 add smtp auth rate limits
carl
parents: 134
diff changeset
134 client machines and accounts with weak cracked passwords.
f4746d8a12a3 add smtp auth rate limits
carl
parents: 134
diff changeset
135
134
f9917ce924a3 all dns lookups fully qualified, my_read() bug fix
carl
parents: 133
diff changeset
136 5.20 2006-08-02
f9917ce924a3 all dns lookups fully qualified, my_read() bug fix
carl
parents: 133
diff changeset
137 Fully qualify all dns lookups. Fix my_read() bug. Try to convert
f9917ce924a3 all dns lookups fully qualified, my_read() bug fix
carl
parents: 133
diff changeset
138 names that might be ip addresses via inet_aton before doing dns
f9917ce924a3 all dns lookups fully qualified, my_read() bug fix
carl
parents: 133
diff changeset
139 lookups.
f9917ce924a3 all dns lookups fully qualified, my_read() bug fix
carl
parents: 133
diff changeset
140
131
df355d117199 uribl lookups fully qualified; allow two component host names
carl
parents: 128
diff changeset
141 5.19 2006-08-01
df355d117199 uribl lookups fully qualified; allow two component host names
carl
parents: 128
diff changeset
142 Bug fix - add trailing dot to uribl dns lookups to make them fully
df355d117199 uribl lookups fully qualified; allow two component host names
carl
parents: 128
diff changeset
143 qualified. Check host names with only two components, since
df355d117199 uribl lookups fully qualified; allow two component host names
carl
parents: 128
diff changeset
144 spammers are now using bare http://domain.tld references.
133
b8ce1b31237d uribl lookups fully qualified; allow two component host names
carl
parents: 131
diff changeset
145 Spec file now creates an rpm that properly creates the dnsbl user.
131
df355d117199 uribl lookups fully qualified; allow two component host names
carl
parents: 128
diff changeset
146
128
9ab51896447f don't do uribl lookups on rfc1918 address space
carl
parents: 127
diff changeset
147 5.18 2006-04-27
127
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
148 Bug fix - newer sendmail versions don't guarantee envelope addresses
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
149 enclosed in <> wrapper.
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
150
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
151 Document backscatter prevention configuration for systems that are
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
152 used to mainly spam filter and then forward to mail to the internal
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
153 server.
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
154
128
9ab51896447f don't do uribl lookups on rfc1918 address space
carl
parents: 127
diff changeset
155 Never ask uribl blacklists about rfc1918 address space.
9ab51896447f don't do uribl lookups on rfc1918 address space
carl
parents: 127
diff changeset
156
126
05ae49d37896 don't do dnsbl lookups on rfc1918 address space
carl
parents: 125
diff changeset
157 5.17 2006-03-25
127
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
158 Never ask dns blacklists about rfc1918 address space.
126
05ae49d37896 don't do dnsbl lookups on rfc1918 address space
carl
parents: 125
diff changeset
159
125
8b1562482b29 put hostname in smtp message for uribl style lookups
carl
parents: 123
diff changeset
160 5.16 2006-03-16
127
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
161 Bug fix - the smtp error message for uribl filtering needs to
125
8b1562482b29 put hostname in smtp message for uribl style lookups
carl
parents: 123
diff changeset
162 reference the host name, not the ip address.
8b1562482b29 put hostname in smtp message for uribl style lookups
carl
parents: 123
diff changeset
163
123
ecd97e7eb1f0 properly return error code with reject reason
carl
parents: 122
diff changeset
164 5.15 2006-03-15
127
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
165 Bug fix - we failed to properly set the return code to indicate the
123
ecd97e7eb1f0 properly return error code with reject reason
carl
parents: 122
diff changeset
166 reason when rejecting mail for content filtering.
ecd97e7eb1f0 properly return error code with reject reason
carl
parents: 122
diff changeset
167
122
e8971c595845 fix typo in multi.surbl.org name
carl
parents: 121
diff changeset
168 5.14 2006-03-13
127
2b1a4701e856 sendmail no longer guarantees <> wrapper on envelopes
carl
parents: 126
diff changeset
169 Fix a typo in the default config file and documentation for using
122
e8971c595845 fix typo in multi.surbl.org name
carl
parents: 121
diff changeset
170 multi.surbl.org
e8971c595845 fix typo in multi.surbl.org name
carl
parents: 121
diff changeset
171
117
aa07452e641b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 116
diff changeset
172 5.13 2006-03-12
aa07452e641b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 116
diff changeset
173 patch from Jeff Evans <jeffe@tricab.com>
121
e2506138561b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 117
diff changeset
174 add SURBL/URIBL lookups, remove trailing dots from hostnames,
e2506138561b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 117
diff changeset
175 allow ip address literals as hostnames.
e2506138561b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 117
diff changeset
176 add configuration for surbl/uribl list and reject message
e2506138561b uribl patch from Jeff Evans <jeffe@tricab.com>
carl
parents: 117
diff changeset
177
115
07e5d4721213 use larger resolver buffer
carl
parents: 113
diff changeset
178 5.12 2006-01-08
07e5d4721213 use larger resolver buffer
carl
parents: 113
diff changeset
179 Use larger resolver buffer to accomodate spammers with many name
07e5d4721213 use larger resolver buffer
carl
parents: 113
diff changeset
180 servers. A current example is life-all.com which needs to retry in
07e5d4721213 use larger resolver buffer
carl
parents: 113
diff changeset
181 tcp mode to fetch the 1444 byte response.
07e5d4721213 use larger resolver buffer
carl
parents: 113
diff changeset
182
116
0094678a16d0 update all systems from tarball, make chkconfig creates dnsbl user if needed
carl
parents: 115
diff changeset
183 'make chkconfig' now creates the dnsbl user if it does not exist.
0094678a16d0 update all systems from tarball, make chkconfig creates dnsbl user if needed
carl
parents: 115
diff changeset
184
113
a893afee4b80 move to autoconf/automake/docbook
carl
parents: 102
diff changeset
185 5.11 2005-12-20
a893afee4b80 move to autoconf/automake/docbook
carl
parents: 102
diff changeset
186 switch to autoconf/automake/docbook
a893afee4b80 move to autoconf/automake/docbook
carl
parents: 102
diff changeset
187
102
d9c64bafbf60 fix compile error on fc3
carl
parents: 101
diff changeset
188 5.10 2005-10-16
d9c64bafbf60 fix compile error on fc3
carl
parents: 101
diff changeset
189 Fix a compile error on Fedora Core 3.
d9c64bafbf60 fix compile error on fc3
carl
parents: 101
diff changeset
190 Discovered by Nigel Horne <njh@bandsman.co.uk>
d9c64bafbf60 fix compile error on fc3
carl
parents: 101
diff changeset
191
101
6ac7ba4a8312 fix <> passed as <<>> to verification hosts
carl
parents: 100
diff changeset
192 5.9 2005-09-26
6ac7ba4a8312 fix <> passed as <<>> to verification hosts
carl
parents: 100
diff changeset
193 Fix a bug with empty return paths passed to the verification code.
6ac7ba4a8312 fix <> passed as <<>> to verification hosts
carl
parents: 100
diff changeset
194 That resulted in 'MAIL FROM:<<>>' being sent to the verification
6ac7ba4a8312 fix <> passed as <<>> to verification hosts
carl
parents: 100
diff changeset
195 mail server.
6ac7ba4a8312 fix <> passed as <<>> to verification hosts
carl
parents: 100
diff changeset
196
100
63e8633abc34 allow empty env_to at global context to remove all restrictions on child contexts
carl
parents: 99
diff changeset
197 5.8 2005-09-25
63e8633abc34 allow empty env_to at global context to remove all restrictions on child contexts
carl
parents: 99
diff changeset
198 Allow empty env_to at global context level to remove restrictions
63e8633abc34 allow empty env_to at global context to remove all restrictions on child contexts
carl
parents: 99
diff changeset
199 on env_to values in child contexts.
63e8633abc34 allow empty env_to at global context to remove all restrictions on child contexts
carl
parents: 99
diff changeset
200
99
f8963ddf7143 failed to return a value from parse_verify()
carl
parents: 98
diff changeset
201 5.7 2005-09-23
f8963ddf7143 failed to return a value from parse_verify()
carl
parents: 98
diff changeset
202 Failed to return a value from parse_verify() which caused failures
f8963ddf7143 failed to return a value from parse_verify()
carl
parents: 98
diff changeset
203 to load the configuration.
f8963ddf7143 failed to return a value from parse_verify()
carl
parents: 98
diff changeset
204
98
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
205 5.6 2005-09-22
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
206 Tokenizer errors now go thru the syslog code, so they are visible
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
207 when generated during config file reloads during normal operation.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
208
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
209 5.5 2005-09-21
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
210 Cleanup debug logging. Verify from/to pairs now remembers the last
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
211 from value sent to the remote server to prevent unnecessary rset
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
212 commands.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
213
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
214 5.4 2005-09-18
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
215 Add verify statement to specify the smtp host to be used to verify
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
216 envelope from / recipient pairs.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
217
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
218 Authenticated clients are now exempt from all white/black listing
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
219 in addition to the dnsbl lookups.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
220
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
221 dcc_to should not look at substitute mail_host. That is only used
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
222 by dcc_from.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
223
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
224 5.3 2005-08-07
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
225 Properly quit if the config file has syntax errors on startup. Send
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
226 mail to root if the config file needs to be reloaded since it was
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
227 modified, but contains syntax errors. In this case, we continue to
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
228 use the old configuration.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
229
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
230 5.2 2005-08-02
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
231 Patch from Stephen Johnson <stephen.johnson@arkansas.gov> fixing the
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
232 lack of a default return value in CONTEXT::acceptable_content().
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
233
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
234 5.1 2005-07-20
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
235 Add multiple syslog debug levels. Detect and silently remove
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
236 duplicate DNSBL definitions. That allows us to accept mail to
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
237 recipients in multiple domains that use the same blacklist and yet
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
238 only check that blacklist once. This may happen when your config
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
239 file directly includes as child contexts the config files used on
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
240 your clients mail servers.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
241
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
242 5.0 2005-07-16
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
243 Major changes to the syntax of the config file. Content filtering
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
244 is no longer a global mail server setting.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
245
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
246 4.6 2005-04-02
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
247 Fix enum compilation error on Fedora Core 3.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
248 Discovered by Nigel Horne <njh@bandsman.co.uk>
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
249
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
250 Remove bad html tag command from the default conf file. Spammers
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
251 seem to have abandoned this.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
252
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
253 Add toolbar.msn.click-url.com in hosts-ignore.conf. These are all
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
254 commented, but you might want to uncomment them.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
255
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
256 4.5 2005-01-22
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
257 Add uuencode decoding for old style attachments.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
258
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
259 4.4 2005-01-18
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
260 Bug fix in forked process termination that left zombies.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
261
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
262 4.3 2005-01-16
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
263 Only keep 20% of the resolver sockets in the ready pool.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
264
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
265 4.2 2005-01-08
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
266 Use the separate resolver processes even if we don't have the
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
267 resolver interfaces and need gethostbyname.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
268
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
269 4.1 2005-01-06
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
270 Use a local unix domain socket for the resolver process
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
271 communication, rather than a tcp/ip socket.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
272
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
273 4.0 2005-01-03
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
274 Initialize the thread mutex objects early, before they are needed
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
275 by possible calls to my_syslog.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
276
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
277 Fork off a separate resolver listener process, so we can do multiple
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
278 dns operations in parallel. For each simultaneous inbound email,
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
279 we have a separate sendmail process, a milter thread, and a dns
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
280 resolver process.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
281
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
282 3.7 2004-10-28
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
283 Added an 'ignore' command to the conf file, used to ignore some
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
284 hosts that might end up on the SBL and otherwise trip the content
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
285 scanning filter. In particular, many recent Microsoft Word
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
286 documents contain the string www.5iantlavalamp.com which is
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
287 associated with their smart tags stuff. That is currently hosted at
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
288 216.168.224.70, which is shared with a site that ended up on the
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
289 SBL.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
290
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
291 3.6 2004-09-08
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
292 Contributions from Dan Harkless <software@harkless.org>
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
293 Better documentation for disabling the content filtering.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
294 Don't bother looking at the body text if we are not doing
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
295 content filtering.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
296
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
297 3.5 2004-07-17
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
298 Extend the error message for content filtering when the NS record
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
299 points to an ip address on the SBL. Include the original host name
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
300 that referenced that NS name.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
301
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
302
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
303 3.4 2004-07-15
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
304 Tokens with two consecutive periods cannot be ip addresses or host
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
305 names.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
306
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
307 Updated dnsbl.spec file for building rpms from John Gunkel.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
308
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
309
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
310 3.3 2004-07-09
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
311 Drop root priviledges properly, including the group id.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
312
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
313
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
314 3.2 2004-07-09
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
315
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
316 Contributions from John Gunkel <jgunkel@palliser.ca>:
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
317 Add .spec file for building rpms, contributed by John Gunkel
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
318
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
319 Changes to file layout to conform to RedHat/LSB standards.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
320
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
321 Add some html (actually xml) tags used by Apple mac print
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
322 subsystem that were tripping the html tag detector.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
323
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
324 Help with changes required to allow dnsbl to drop root
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
325 priviledges. Move the socket to /var/run/dnsbl/dnsbl.sock
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
326
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
327 Change parser to handle &#xnnn; obfuscated urls with charaters
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
328 specified in hex.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
329
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
330 Make bad_html tags more sensitive to binary tags, to reduce false
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
331 positives in .zip or .tar.gz file attachments.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
332
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
333 Add sendmail queueid to the dnsbl syslog messages.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
334
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
335 Fix one place where host names were not forced to lower case.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
336 Discovered by Nigel Horne <njh@bandsman.co.uk>
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
337
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
338 Remove duplicate dns queries within the same smtp transaction from
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
339 the body content filtering. This helps if the mail server does not
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
340 have a nearby caching dns server.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
341
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
342 Add host_soft_limit config keyword. Use only one of host_limit or
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
343 host_soft_limit, since the last one wins. The host_limit is a hard
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
344 upper limit on the number of host names in a message. The
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
345 host_soft_limit allows unlimited host names, but only checks a
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
346 random sample of them against the dnsbl.
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
347
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
348 The main thread has dropped root priviledges, but other threads
91c27c00048f tokenizer errors now go thru syslog to be visible during config file reloads in normal operation
carl
parents: 92
diff changeset
349 are still running as root. This needs to be fixed.