aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* IMAP: improve STARTTLS error message for ssh-plugin caseMatthias Andree2021-10-313-4/+17
| | | | | | For common ssh-based IMAP PREAUTH setups (i. e. those that use a plugin - no matter its contents - and that set auth ssh), change the STARTTLS error message to suggest sslproto '' instead.
* NEWS: mention Мирослав Николић/Miroslav Nikolić as translator.Matthias Andree2021-10-311-0/+1
|
* Update <sr> Serbian translation to fetchmail-6.4.22.rc1Мирослав Николић2021-10-311-509/+844
|
* NEWS: Mention Takeshi Hamasaki as translator.Matthias Andree2021-09-201-0/+6
|
* Update <ja> Japanese translation to fetchmail 6.4.22.rc1Takeshi Hamasaki2021-09-201-517/+853
|
* Get ready for 6.4.22.Matthias Andree2021-09-138-1090/+645
|
* Note OpenSSL 3.0.0 support and licensing change.Matthias Andree2021-09-133-19/+41
| | | | | While here, rearrange COPYING a little bit and add a few paragraphs. Zeilen,
* de.po: Fix typo in German translationMatthias Andree2021-09-011-2/+2
|
* NEWS: fix spelink of Stefan Eßer's last nameMatthias Andree2021-09-011-1/+1
|
* NEWS: Credit Petr Pisar for Czech translation.Matthias Andree2021-09-011-0/+1
|
* IMAP: fix error code when LOGIN failsMatthias Andree2021-09-011-7/+1
| | | | | This recently printed 'we've run out of authentication methods' instead of the actual authentication failure.
* Update <sv> Swedish translation to fetchmail 6.4.22.rc1Göran Uddeborg2021-09-011-299/+531
|
* Update <cs> Czech translation to fetchmail 6.4.22.rc1Petr Pisar2021-09-011-481/+762
|
* website: announce 6.4.22.rc3Matthias Andree2021-08-301-4/+5
|
* update SA-2021-02Matthias Andree2021-08-291-4/+5
|
* Get ready for 6.4.22.rc3.Matthias Andree2021-08-294-535/+303
|
* NEWS: Credit RC testers.Matthias Andree2021-08-291-0/+4
|
* NEWS: credit translators.Matthias Andree2021-08-291-1/+3
| | | | | | Göran Uddeborg (Swedish) was credited in a5a961e7c45fb4d1cdc700e7dcd2ff55ab2b1b51, without explicit mention in the header. credit Jakub Bogusz (Polish) and Besnik Bleta (Albanian).
* Update <sq> Albanian translation to fetchmail-6.4.22.rc1Besnik Bleta2021-08-291-314/+373
|
* Update <pl> Polish translation to fetchmail 6.4.22.rc1Jakub Bogusz2021-08-291-311/+369
|
* Fix IMAP protocol confusion on 2nd and subsequent polls.Matthias Andree2021-08-291-1/+1
| | | | | | | | This is because driver.c fails to initialize stage to STAGE_GETAUTH soon enough, and on 2nd and subsequent polls it is still STAGE_LOGOUT, and the IMAP parser does not look for the CAPABILITIES outside STAGE_GETAUTH. Reported by: Stefan Esser <se@FreeBSD.org>
* socket.c: invalid sslproto no longer abort()sMatthias Andree2021-08-282-3/+4
|
* Convert to UTF-8.Matthias Andree2021-08-282-39/+39
|
* declare .txt to be UTF-8Matthias Andree2021-08-281-0/+1
| | | | Reported by: Hanno Böck
* upload .htaccessMatthias Andree2021-08-281-1/+1
|
* Update <sv> Swedish translation to fetchmail 6.4.22.rc1Göran Uddeborg2021-08-281-474/+765
|
* Get ready for 6.4.22.rc2.Matthias Andree2021-08-277-1256/+721
|
* Credit fr/eo translators.Matthias Andree2021-08-271-0/+4
|
* Update <fr> French translation to fetchmail-6.4.22.rc1Frédéric Marchal2021-08-271-524/+906
|
* Update <eo> Esperanto translation to fetchmail 6.4.22.rc1Keith Bowes2021-08-271-465/+737
|
* imap.c, pop3.c: fix protocol regression of 6.4.22.rc1Matthias Andree2021-08-273-68/+82
| | | | | | | | | | | | | | | fetchmail 6.4.22.rc1 clobbered its IMAP state too late, and lost information on the protocol version in many circumstances. Consequently, it tried to talk IMAP4 to IMAP4rev1 servers, which failed. This fix the clear_sessiondata() out to the new constructor and destructor, such that imap_getauth() only needs to call it after STARTTLS, when it must re-probe CAPABILITY anyways. This was the same bug for POP3, which however does not collect state from the greeting, so that the bug was without effect for POP3. Reported by: Corey Halpin, FreeBSD port maintainer.
* etrn.c, odmr.c, pop2.c: declare NULL con-/destructorsMatthias Andree2021-08-273-1/+7
|
* struct method: introduce con-/destructorsMatthias Andree2021-08-272-0/+13
| | | | | | | These can be used before setting up or after closing down a socket for protocol-specific initialisiation or cleanup, and are required to cleanly fix up the IMAP-loses-protocol-version regression without too many temporary hacks in the code.
* NEWS: fix typo.Matthias Andree2021-08-271-1/+1
|
* README.SSL-SERVER: require TLS 1.2/1.3Matthias Andree2021-08-271-0/+5
|
* get ready for 6.4.22.rc1.Matthias Andree2021-08-273-20/+32
|
* Doxyfile: updatesMatthias Andree2021-08-271-53/+122
|
* Add CVE ID; revise TLS docs & fetchmail-SA-2021-02Matthias Andree2021-08-274-87/+94
|
* fetchmail.c: Fix SIGSEGV optmerge()ing "no envelope"Matthias Andree2021-08-273-2/+7
| | | | | | | | Reported by Bjørn Mork, fixes Debian Bug#992400. Crash happens inside xstrdup() on a strlen((char *)-1) where the argument is constant and the trigger is a local trusted configuration file, so not deemed a vulnerability.
* po/de.po: Update German translation.Matthias Andree2021-08-271-274/+333
|
* Misc POP3 cleanups.Matthias Andree2021-08-261-5/+6
|
* SECURITY: imap.c, pop3.c: STARTTLS drops stateMatthias Andree2021-08-262-35/+43
| | | | | We need to lose all state after STARTTLS to safeguard from attacks against the clear-text part of the session.
* NEWS: reword 6.4.21 regression fix to include --syslogMatthias Andree2021-08-261-1/+1
|
* fetchmail.c: reword port/--ssl checks to nudge user towards --sslMatthias Andree2021-08-261-2/+2
|
* sanity check well-known POP3/IMAP ports vs. SSLMatthias Andree2021-08-262-0/+13
| | | | | Gitlab: Closes #31. (cherry picked from commit da6eb347af326912560f56081d603a0a78c3d56d)
* lock.c: fix unused-value warning in unlockit().Matthias Andree2021-08-261-2/+5
|
* POP3: make CAPA parser caseblind.Matthias Andree2021-08-262-0/+4
|
* xmalloc.h: Add GCC malloc attribute to xmalloc().Matthias Andree2021-08-261-1/+5
|
* imap.c, report.c: remove or comment dead stores.Matthias Andree2021-08-262-3/+6
|
* SECURITY: POP3: changes for --auth ssh and RPAMatthias Andree2021-08-263-43/+69
| | | | | These no longer defeat STARTTLS negotiation, and RPA is only attempted with --auth any.