March 12, 2019 Roberto Puzzanghera 208 comments
The complete changelog and patch info are inside the README.PATCH file.
- port to openssl-1.1
- DKIM patch updated to v. 1.24
* bug fix: restored signaturedomains/nosignaturedomains functionalities.
-DKIM patch updated to v. 1.23
* fixed a bug where including round brackets in the From: field ouside the double quotes (From: "Name Surname (My Company)" <email@example.com>) results in a DKIMContext structure invalid error (tx Mirko Buffoni).
* qmail-dkim and dkim were issuing a failure for emails which had multiple signature with at least one good signature. Now qmail-dkim and dkim will issue a success if at least one good signature is found.
-logging patch updated to v. 5
* fixed a bug in logit and logit2 functions where a RSET command and a subsequent brutal quit of the smtp conversation
^]by the client cause a segfault (tx Mirko Buffoni, more info here)
-patch info moved to README.PATCH file
-DKIM patch updated to v. 1.22
* openssl 1.1.0 port
* various improvements, bug fixes
* fixed a bug where the filesize part of the S=<filesize> component of the Maildir++ compatible filename is wrong (tx MG). More info here.
* removed, because it was causing more problems than advantages, as the domain of the firstname.lastname@example.org had to match the system's domain inside
control/meand can't be a virtual domain at the same time.
- 2017-10-11 (tx Luca Franceschini)
-qlogfix (diff here)
* log strings should terminate with \n to avoid trailing ^M using splogger
* bug reporting custom errors from qmail-queue in qlog
-added dnscname patch
-added rcptcheck patch
-qmail-smtpd now retains authentication upon rset (tx to Andreas)
March 12, 2019 Roberto Puzzanghera 77 comments
* openssl-1.1 port
qmail-smtpdnow retains authentication upon rset (tx to Andreas)
-qmail-tls patch updated to v. 20160918
* bug: qmail-remote accepting any dNSName, without checking that is matches (E. Surovegin)
* bug: documentation regarding RSA and DH keys (K. Peter, G. A. Bofill)
- 2016-05-15 force-tls patch improved (a big thanks to Marcel Telka). Now qmail-smtpd avoid to write the auth verb if the STARTTLS command was not sent by the client
- 2015-12-26 qmail-tls: updated to v. 20151215
* typo in #if OPENSSL_VERSION_NUMBER for 2015-12-08 patch release (V. Smith)
* add ECDH to qmail-smtpd
* increase size of RSA and DH pregenerated keys to 2048 bits
* qmail-smtpd sets RELAYCLIENT if relaying allowed by cert
- 2015-10-05 qmail-authentication: updated to v. 0.8.3
- 2015.08-24 fixed a bug on
qmail-smtpd.ccausing a double 250-STARTTLS, thanks to Andreas
- 2015.08.08 fixed a bug on
qmail-remote.cthat was causing the sending of an additional ehlo greeting, thanks to Cristoph Grover
I have put into a package the latest version of the following patches for
netqmail-1.06. You may be interested to the combined patch I have put together here.
March 21, 2018 Roberto Puzzanghera 14 comments
Certbot is part of EFF’s effort to encrypt the entire Internet. Secure communication over the Web relies on HTTPS, which requires the use of a digital certificate that lets browsers verify the identity of web servers (e.g., is that really google.com?). Web servers obtain their certificates from trusted third parties called certificate authorities (CAs). Certbot is an easy-to-use client that fetches a certificate from Let’s Encrypt—an open certificate authority launched by the EFF, Mozilla, and others—and deploys it to a web server.
March 21, 2018 Roberto Puzzanghera 48 comments
- Download my dovecot's config files
- Info: http://www.dovecot.org/
- Documentation: http://wiki2.dovecot.org
- Mail Server overview: http://wiki2.dovecot.org/MailServerOverview
- Download: http://www.dovecot.org/releases/2.3/
- Version: dovecot-2.3.1
Dovecot is an open source IMAP and POP3 email server for Linux/UNIX-like systems, written with security primarily in mind. Dovecot is an excellent choice for both small and large installations. It's fast, simple to set up, requires no special administration and it uses very little memory.
October 24, 2017 Roberto Puzzanghera 6 comments
If you want to avoid the risk of compromising your server because of accounts who are sending messages indiscriminately to the world, because their password was violated in some way, then you can take advantage of Luca Franceschini's rcptcheck-overlimit.sh script, which has to be used in conjunction with the rcptcheck patch (a patch derived by Luca himself from an original work of Jay Soffian).
Since in 2016 Luca has decided to merge his combo with my big patch, he is giving his personal contribution to it fixing bugs, adding new important patches and functionalities, often writing himself the code. The script shared here is just the last one and it's quite surprising (at least for me) to observe how many things are performed putting together just 20 lines.
July 5, 2016 Roberto Puzzanghera 4 comments
- Info: http://linux-vserver.org/
Linux-Vserverdoes (from wikipedia): http://en.wikipedia.org/wiki/Linux-VServer
- Download only my patch: /files/linux-vserver/linux-vserver_slackware-14.2.patch
- Download my patch and installer script: /files/linux-vserver/slack_vserver.tar.gz
Linux-Vserver is an open source software which acts as a virtual private server implementation done by adding operating system-level virtualization capabilities to the Linux kernel.