Skip to content

Latest commit

 

History

History
368 lines (240 loc) · 5.99 KB

CHANGELOG.rst

File metadata and controls

368 lines (240 loc) · 5.99 KB

Changelog

2.0.10

Changed

  • Allow comments in domains-file (#181)

Added

  • Support for building against system libmilter library

2.0.9

Fixed

  • Fixed build with system libraries (#176)

Changed

  • Create sockets non-blocking and with close-on-exec enabled

2.0.8

Fixed

  • Fixed socket creation for Milter
  • Fixed Milter issue with IPv6 clients (#156)

Added

  • Support for system user management with sysusers.d
  • Better customization of the PostSRSd build with POSTSRSD_CONFIGDIR and INSTALL_SYSTEMD_SERVICE

Changed

  • Improved documentation of the PostSRSd example configuration

Contributions

2.0.7

Fixed

  • the parser callback for the original-envelope option used the wrong return type, which could prevent the database mode from activating
  • PostSRSd is confirmed to build and run on FreeBSD now

2.0.6

Added

  • New configuration option debug to increase log verbosity.

Changed

  • Reduced default log verbosity: PostSRSd no longer prints messages for mail addresses which need no rewrite (#149)

2.0.5

Fixed

  • Do not try to set Keep-Alive on Redis unix sockets (#146)

2.0.4

Fixed

  • Worked around EXCLUDE_FROM_ALL bug in CMake 3.20.x and older
  • Fixed a few compiler warnings in the test suite

Added

  • Added support for musl as libc alternative
  • Added support for CPack to generate installable packages
  • Added new CLI option -h to print a summary of CLI options

Changed

  • The test suite no longer requires faketime as dependency
  • Improved error logging

2.0.3

Fixed

  • Close socketmap connection in main process to prevent resource exhaustion (#141)
  • Explicitly set 0666 permissions on socketmap unix socket (#141)

2.0.2

Fixed

  • Improved detection logic for systemd system unit directory (#132)
  • Drop supplementary groups when relinquishing root privileges (#133)

2.0.1

Fixed

  • Fixed improper linking against the pthread library on systems where pthread is separate from libc (#130)

2.0.0

Added

  • Added proper configuration file format
  • Added support for unix sockets
  • Added new rewrite mode with database backend
  • Added experimental milter support

Changed

  • PostSRSd uses socketmap tables instead of tcp tables now

Removed

  • Removed AppArmor and SELinux profiles
  • Removed support for all init systems except systemd (Pull requests for needed init systems are welcome)

1.12

Fixed

  • Explicitly clear O_NONBLOCK to avoid inherited non-blocking sockets on some operating systems (#117)
  • Do not close all file descriptors up to _SC_MAX_OPEN, as this limit tends to be absurdly high in Docker containers (#122)
  • Check for the existence of the faketime tool before using it in the unit tests.

1.11

Security

  • The subprocess that talks to Postfix could be caused to hang with a very long email address (077be98d)

1.10

Security

  • Fixed CVE-2020-35573: PostSRSd could be tricked into consuming a lot of CPU time with an SRS address that has a very long time stamp tag (4733fb11)

Fixed

  • Fixed a bug where PostSRSd would occasionally create invalid SRS addresses if the used secret is extremely long

1.9

Hotfix release

Added

  • Added test that systemd service file is working properly

Fixed

  • Fixed systemd service file

1.8

Added

  • Added "Always Rewrite" option (#97)
  • Added blackbox testing for PostSRSd daemon

Changed

  • Improved syslog messages

Fixed

  • Fixed AppArmor and SELinux profiles

1.7

Changed

  • Improved systemd auto detection
  • Drop group privileges as well as user privileges
  • Merged Debian adaptations (Thanks to Oxan van Leeuwen)

Removed

  • CMake 2.x support

1.6

Added

  • Somewhat usable unit tests

Fixed

  • Fixed Big Endian issue with SHA-1 implementation (#90)

1.5

Added

  • Add configuration options for listening network interface

Changed

  • Close all open file descriptors on startup

Fixed

  • Fixed SELinux policy
  • Fixed handling of excluded domains in systemd startup file

1.4

Added

  • Added dual stack support

Fixed

  • Make startup scripts more robust in case of configuration errors
  • Improved BSD compatibility

1.3

Added

  • Make SRS separator configurable
  • Added support for even more init systems

1.2

Added

  • Added support for more init systems

Changed

  • Listen to 127.0.0.1 by default

Fixed

  • Load correct timezone for logging

1.1

Fixed

  • Fixed various issues with the CMake script
  • Fixed command line parsing bug

1.0

  • First stable release