Search
j0ke.net Open Build Service
>
Projects
>
server:mail
>
spamassassin
> Changes
Sign Up
|
Log In
Username
Password
Cancel
Overview
Repositories
Revisions
Requests
Users
Advanced
Attributes
Meta
Changes of Revision 8
[-]
[+]
Added
spamassassin.changes
@@ -0,0 +1,733 @@ +------------------------------------------------------------------- +Sun Aug 12 11:45:35 CEST 2007 - varkoly@suse.de + +- update to 3.2.3: + *bug 5574: fix new setuid code to work with perl 5.6.1, and to support DCC and + Pyzor in all releases of perl + + *bug 5107: change default 'user_scores_ldap_username' to be the null string, + allowing anonymous binding; fix 'schema' syntax error in LDAP config support + + *zeroing an 'eval' rule's score did not stop it running. fix, thanks to + Richard Birkett <richard+spamassassin at musicbox.net> + + *bug 5571: allow for new message ID format we have seen from Vista or Windows + 2003 Server MAPI to avoid false positives + + *bug 5397: RDNS_DYNAMIC should never fire on a PTR with 'static' in it; thanks + to Martin Blapp <mbr at freebsd.org>. bug 5563: RDNS_DYNAMIC rules use + order-dependent fields where it is unsafe to depend on this, fix. bug 5564: + __RDNS_DYNAMIC_IPADDR does not hit all of its test patterns, fix. + + *bug 5475: fix FORGED_MUA_AOL_FROM to allow <*@{aol,cs}.*> addresses instead + of just <*@{aol,cs}.com> + + +------------------------------------------------------------------- +Thu Aug 2 13:48:28 CEST 2007 - dmueller@suse.de + +- update to 3.2.2: + * bug 5548: Certain mail input can take a long time to scan with 100% CPU + utilisation, due to backtracking in a rule's regexp. fix + * bugs 5510, 5518, 5529: fix 'make test' when running as root, needed for CPAN + * bug 5419: kill -HUP of pidof spamd causes the ps name to change from spamd + to perl. fixed + * bug 5535: 'make test' errors in Windows caused by nonportable use of + getpwuid + * bug 5462: multiple DNS records for a host name should allow use of spamd -H + for load balancing installs to work + * bugs 5509, 5511: fix network lookup timeouts, where lookups were being lost + once a timeout was hit; also fix code to match documentation on + rbl_timeout's scaling and minimum duration of 1 second; and attempt to + collect already-received DNS responses when the timeout is reached; improve + related debugging output. Thanks to Mark Martinec + * bugs 5412, 5478, 5522: Fix problems using the spamc -x option with certain + other options; 'spamc -x -R' always returned 0, instead of the exit code, on + error. Bug 5478: in addition, 'spamc -x -e /command' would still run the + command, even if errors meant that the filtered text would be unavailable, + which contradicted -x. + * bug 5445: body eval tests defined in user_rules cause ugly 'Subroutine + _eval_tests_type11_prineg400_set3 redefined' warnings + * bug 5355: add in new entries for RegistrarBoundaries + * bug 5515: libsslspamc.so & libsslspamc.so can not build without -fPIC, but + we were picking up the wrong CFLAGS to do this. + * bug 5501: zero score for FH_HAS_XID + * bug 5449: allow_user_rules causes sa-compile / Rule2XSBody plugin to emit + spurious warnings; fix. also, add a new 'user_conf_parsing_end' plugin + hook, which is called after the per-user configuration is parsed + * bug 5182: update the sa-learn doc to mention that -u is only usable w/ sql + * bug 5534: fix harmless-but-ugly C compiler warning in sa-compile + +------------------------------------------------------------------- +Thu Jul 26 10:32:25 CEST 2007 - varkoly@suse.de + +- #278626 - SpamAssassin + Mailman + The Bat! = false positive + +------------------------------------------------------------------- +Thu Jun 14 09:58:00 CEST 2007 - varkoly@suse.de + +- UPDATE to version 3.2.1 + +- bug 5480: fix for CVE-2007-2873: a local user symlink-attack DoS + vulnerability. It only affects systems where spamd is run as root, is used + with vpopmail or virtual users via the "-v"/"--vpopmail" OR + "--virtual-config-dir" switch, AND with the "-x"/"--no-user-config AND + WITHOUT the "-u"/"--username" switch AND with the "-l"/"--allow-tell" switch. + This is not default on any distro package, and is not a common configuration. + More details of the vulnerability can be read at + <http://spamassassin.apache.org/advisories/cve-2007-2873.txt>. + +- bug 5488: zero some rules causing false positives: FH_HOST_EQ_D_D_D_DB and + FH_HOST_EQ_D_D_D_D. + +- bug 5257: re-raise autolearn ham threshold to 1.0; the lower value + used in 3.2.0 was creating problems. + +- bug 5422: in spamd, deleting hash entries from the SIGCHLD signal handler is + unsafe, causes corruption of the data structure, and results in 'prefork: + ordered child N to accept, but they reported state '1', killing rogue' + errors. fix. + +- bug 5102: tighten up regexp for FORGED_HOTMAIL_RCVD to avoid some FPs. + +- bug 5457: spamc build and test should handle not having zlib available. + +- bug 5379: spamd could crash at startup if its preloading temporary directory + already exists. fix. + +- bug 4616: spamc config can cause command line options to be ignored. fix. + +- bug 5485: zero score DK/DKIM_POLICY_SIGNSOME rules since they'll always fire + due to defaults (unless there's an explicit SIGNALL policy). + +- bug 5492: VBounce rule was looking in header instead of body for whitelisted + relays. fix. + +- bug 5487: prevent multiple "urirhssub"s using the same zone from overwriting + each other. + +- bug 5432 - Change default in Win32 build to not build spamc. + +- bug 5446: add --updatedir option to sa-compile and remove inaccurate re2c + required version info from pod. + +- bug 5436: add omitted "ifplugin" statements to the configuration, which would + otherwise cause lint errors if the default plugins were disabled. + +- bug 5477: prevent Rule2XSBody info message from appearing on stderr during + spamd startup. + +------------------------------------------------------------------- +Thu May 3 15:38:00 CEST 2007 - varkoly@suse.de + +- update to 3.2.0 + Summary of major changes since 3.1.8 + ------------------------------------ + + Changes to the core code: + + * new behavior for trusted_networks/internal_networks: the 127.* network + is now always considered trusted and internal, regardless of configuration. + + * bug 3109: short-circuiting of 'definite ham' or 'definite spam' messages + based on individual short-circuit rules using the 'shortcircuit' setting, + by Dallas Engelken <dallase /at/ uribl.com>. + + * bug 5305: implement 'msa_networks', for ISPs to specify their Mail Submission + Agents, and extend network trust accordingly. + + * bug 4636: Add support for charset normalization, so rules can be written + in UTF-8 to match text in other charsets. + + * sa-compile: compilation of SpamAssassin rules into a fast parallel-matching DFA, + implemented in native code. + + * "tflags multiple": allow writing of rules that count multiple hits in a single message. + + * bug 4363: if a message uses CRLF for line endings, we should use it as well, + otherwise stay with LF as usual; important for Windows users. + + * bug 4515: content preview was omitting first paragraph when no Subject: header was present. + + * The third-party modules used by sa-update are now required by the SpamAssassin package, + instead of being optional. + + * Bug 5165: 'sa-update --checkonly' added to check for updates without applying them; + thanks to <anomie /at/ users.sourceforge.net> + + * Bugs 4606, 4609: Adjust MIME parsing limits for nested multipart/* and message/rfc822 MIME parts. + + * bug 5295: add 'whitelist_auth', to whitelist addresses that send mail using + sender-authorization systems like SPF, Domain Keys, and DKIM + + * Removed dependency on Text::Wrap CPAN module. + + * Received header parsing updates/fixes/additions. + + Spamc / spamd: + + * bug 4603: Mail::SpamAssassin::Spamd::Apache2 -- mod_perl2 module, implementing spamd + as a mod_perl module, contributed as a Google Summer of Code project by Radoslaw Zielinski. + + * bug 3991: spamd can now listen on UNIX domain, TCP, and SSL sockets simultaneously. + Command-line semantics extended slightly, although fully backwards compatibly; + add the --ssl-port switch to allow TCP and SSL listening at the same time. + + * bug 3466: do Bayes expiration, if required, after results have been passed back + to the client from spamd; this helps avoid client timeouts. + + * more complete IPv6 support. + + * spamc: Add '-K' switch, to ping spamd. + + * spamc: add '-z' switch, which compresses mails to be scanned using zlib compression; + very useful for long-distance use of spamc over the internet. + + * bug 5296: spamc '--headers' switch, which scans messages and transmits back just rewritten headers. + This is more bandwidth-efficient than the normal mode of scanning, but only works for 'report_safe 0'. + + * Bump spamd's protocol version to 1.4, to reflect new HEADERS verb used for '--headers'. + + Mail::SpamAssassin modules and API: + + * bug 4589: allow M::SA::Message to use IO::File objects to read in message (same as GLOB). + + * bug 4517: rule instrumentation plugin hooks, to measure performance, + from John Gardiner Myers <jgmyers /at/ proofpoint.com>. + + * add two features to core rule-parsing code; 1. optional behaviour to recurse through subdirs + looking for .cf/.pre's, to support rules compilers working on rulesrc dir. 2. call back
