aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add further TLS stuff for 6.4.0.Matthias Andree2015-01-261-0/+4
|
* TLS overhaul, bumping version to 6.4Matthias Andree2015-01-2612-185/+275
| | | | | | | | | | | | | | | Removes SSLv2, enables TLSv1.1 and v1.2 more easily, permits SSLv3 (only if specified) and newer TLSv1.1+ for STLS/STARTTLS. Only negotiates TLSv1 and newer by default, SSLv3 must now be specified explicitly, as a consequence of the POODLE attack. This is meant to be a minimally upgraded version, and cannot be usefully done as a 6.3.X release. It is strongly recommended that users review their configuration - especially --sslproto - per instructions in the NEWS file and manual page. It has changed semantics and in many cases --sslproto auto or perhaps --sslproto tls1.2+ should be used now.
* Also report SSL/TLS protocol version in verbose mode.Matthias Andree2015-01-161-2/+6
|
* Report SSL/TLS cipher, in verbose mode.Matthias Andree2015-01-161-0/+14
| | | | (socket.c cherry-pick from master)
* Bump copyright.Matthias Andree2015-01-162-217/+217
|
* Also recognize OPENSSL_NO_SSLx.Matthias Andree2015-01-163-7/+14
| | | | | These are the macros OpenSSL defines when configured with no-ssl2 or no-ssl3, the actual macro names are OPENSSL_NO_SSL2 and OPENSSL_NO_SSL3.
* Permit build on SSLv3-disabled OpenSSL,Matthias Andree2015-01-165-10/+33
| | | | | | | providing that these also omit the declaration of SSLv3_client_method(). Related to Debian Bug#775255. Version report lists -SSLv3 on +SSL builds that omit SSLv3_client_method(). Version report lists -SSLv2 on +SSL builds that omit SSLv2_client_method().
* Update German translation for --idle check.Matthias Andree2014-11-221-155/+160
|
* More warnings on idle vs. multiple mailboxes.Matthias Andree2014-11-222-7/+11
| | | | In response to Jeremy Chadwick's trouble 2014-11-19, fetchmail-users.
* Error out if user combines --idle with multiple mailboxes.Matthias Andree2014-11-222-1/+14
|
* Make test suite compatible with automake 1.14.Matthias Andree2014-11-221-2/+2
|
* Update now that the lists are back up.Matthias Andree2014-07-041-13/+7
|
* Update. Sourceforge.net oversleeping mailing list import.Matthias Andree2014-06-121-3/+7
|
* More berlios -> sourceforge changes.Matthias Andree2014-05-213-3/+3
|
* More berlios -> sourceforge changes.Matthias Andree2014-05-211-46/+0
|
* Update error reporting address.Matthias Andree2014-05-2125-272/+284
|
* Update website again.Matthias Andree2014-05-211-2/+1
|
* Update website.Matthias Andree2014-05-211-4/+3
|
* Ignore .settings directory.Matthias Andree2014-05-211-0/+1
|
* Convert most references from berlios.de to sourceforge.net.Matthias Andree2014-05-2133-157/+866
| | | | Re-sign EN and SAs because that broke signatures.
* Do not translate header tags such as "Subject:".Matthias Andree2014-05-205-76/+80
| | | | Reported by Gonzalo Pérez de Olaguer Córdoba, Debian Bug#744907.
* Update last change date.Matthias Andree2014-05-201-1/+1
|
* Remove berlios from upload script.Matthias Andree2014-05-201-13/+1
|
* Emergency update after berlios shutdown.Matthias Andree2014-05-201-12/+21
|
* Update FAQ #G2, remove iBiblio link, add Gitorious and Sourceforge Git repos.Matthias Andree2014-02-141-3/+3
|
* Fix typo around forcecr documentation.Matthias Andree2013-06-211-1/+1
|
* Remove comment that confuses splint.Matthias Andree2013-05-111-1/+1
|
* Fix typo in 'you could [end] up' in FAQ.Matthias Andree2013-05-112-1/+7
| | | | Fixes Debian Bug#706776, submitted by David Lawyer.
* Update for 6.3.26 release.Matthias Andree2013-04-2324-74/+74
|
* Mark release date.Matthias Andree2013-04-231-21/+25
|
* Update German translation.Matthias Andree2013-04-231-5/+5
|
* Bump version.Matthias Andree2013-04-232-2/+2
|
* Update info on the mimedecode fix.Matthias Andree2013-04-231-9/+14
|
* Fix mimedecode last-line omission.Matthias Andree2013-04-232-14/+53
| | | | | | | | | | | | The mimedecode feature failed to ship the last line of the body if it was encoded as quoted-printable and had a MIME soft line break in the very last line. Reported by Lars Hecking in June 2011. Bug introduced on 1998-03-20 when the mimedecode support was added by ESR before release 4.4.1 through code contributed by Henrik Storner, in driver.c. Workaround for older releases: do not use mimedecode feature.
* Update website for 6.3.25 release.Matthias Andree2013-03-191-10/+11
|
* Prepare 6.3.25 release.Matthias Andree2013-03-1916-1676/+1634
|
* Update current translation state as of 2013-03-18Matthias Andree2013-03-1910-1044/+1291
|
* Make SMTP error handling point to --softbounce.Matthias Andree2013-03-072-5/+9
| | | | | The fetchmail manual page now refers the user to --softbounce from the SMTP/ESMTP ERROR HANDLING section. Reported by Anton Shterenlikht.
* Remove obsolete "OpenSSL default fingerprint is MD5" claim.Matthias Andree2013-03-062-4/+7
| | | | | | | The fetchmail manual page no longer claims that MD5 were the default OpenSSL hash format (for use with --sslfingerprint). Reported by Jakob Wilk, PARTIAL fix for Debian Bug#700266.
* Add Esperanto translation.Matthias Andree2013-02-193-1/+3208
|
* Update German translation.Matthias Andree2013-02-191-85/+80
|
* Bump copyright.Matthias Andree2013-02-192-4/+4
|
* Credit John Beck's fixes.Matthias Andree2013-02-181-0/+7
|
* Minor bug fixes for socket.cJohn Beck2013-02-181-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | While running a static code analysis tool (Parfait) on fetchmail, it found some bugs: Error: Memory leak (CWE 401) Memory leak of pointer 'plugin_copy' allocated with malloc((plugin_copy_len + 1)) at line 137 of components/fetchmail/fetchmail-6.3.22/socket.c in function 'parse_plugin'. 'plugin_copy' allocated at line 107 with malloc((plugin_copy_len + 1)). plugin_copy leaks when plugin_copy_offset >= plugin_copy_len at line 114. Error: Null pointer dereference (CWE 476) Read from null pointer 'argvec' at line 189 of components/fetchmail/fetchmail-6.3.22/socket.c in function 'handle_plugin'. Function 'parse_plugin' may return constant 'NULL' at line 137, called at line 188. Null pointer introduced at line 137 in function 'parse_plugin'. at line 190 of components/fetchmail/fetchmail-6.3.22/socket.c in function 'handle_plugin'. Function 'parse_plugin' may return constant 'NULL' at line 137, called at line 188. Null pointer introduced at line 137 in function 'parse_plugin'. (I realize these are on 6.3.22; I checked and verified that this portion of the code is the same in 6.3.24.) The attached patch fixes each of these. (Note by Matthias Andree: The NULL pointer dereference fix does not require error reporting, because parse_plugin() will already have reported the out-of-memory error that causes the NULL to be returned.)
* Improve X.509 certificate validation reporting.Matthias Andree2013-02-062-13/+50
| | | | | | | | | * Improved reporting when SSL/TLS X.509 certificate validation has failed, working around a not-so-recent swapping of two OpenSSL error codes, and a practical impossibility to distinguish broken certification chains from missing trust anchors (root certificates). * OpenSSL decoded errors are now reported through report(), rather than dumped to stderr, so that they should show up in logfiles and/or syslog.
* UpdateMatthias Andree2013-02-031-1/+1
|
* Bump version.Matthias Andree2013-02-032-2/+2
|
* Ignore Netbeans data.Matthias Andree2013-02-031-0/+1
|
* Work around systems returning obsolete EAI_NODATA.Matthias Andree2013-02-032-0/+23
| | | | | | | | | | | | Older systems that provide the older RFC-2553 implementation of getaddrinfo, rather than the current RFC-3493, and systems that do not provide this getaddrinfo() interface at all and thus use the replacement functions from libesmtp/getaddrinfo.?, might return EAI_NODATA when a host is registered in DNS as MX or similar, but without A or AAAA records. Handle this situation when checking for multidrop aliases and treat EAI_NODATA the same as EAI_NONAME, i. e. name cannot be resolved. The proper fix, however, is to upgrade the operating system.
* Make compatible with FreeBSD.Matthias Andree2013-02-031-0/+2
|