-----BEGIN PGP SIGNED MESSAGE-----

Sendmail, Inc. and the Sendmail Consortium announce the release of sendmail
8.11.3. This is a maintenance release which contains bug fixes for
problems found after 8.11.2 was released. Systems which use buffered file
I/O (BSD Torek systems) were not properly fsync()'ing the data (df) file.
Although there is little chance of data loss, this is an important fix.

The release is available from:
        
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.11.3.tar.gz
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.11.3.tar.Z
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.11.3.tar.sig

with MD5 signatures:

77fa841497507b59f388bf59f0e14592 sendmail.8.11.3.tar.gz
66937a256f742c39bc8f22ba89c4c98a sendmail.8.11.3.tar.Z
8ec72e7381203a02238994d89c00c0b8 sendmail.8.11.3.tar.sig

You only need one of the first two files (either the gzip'ed version or the
compressed version). The .sig file contains the PGP signature of the tar
file (after uncompressing it). The PGP signature was created using the
Sendmail Signing Key/2001, available on the web site
(http://www.sendmail.org/) or on the public key servers.

Since sendmail 8.11 and later includes hooks to cryptography, the
following information from OpenSSL applies to sendmail as well.

   PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY
   SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING
   TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME
   PARTS OF THE WORLD. SO, WHEN YOU IMPORT THIS PACKAGE TO YOUR
   COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL
   SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE
   YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT
   AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS ARE NOT LIABLE FOR
   ANY VIOLATIONS YOU MAKE HERE. SO BE CAREFUL, IT IS YOUR RESPONSIBILITY.

8.11.3/8.11.3 2001/02/27
        Prevent a segmentation fault when a bogus value was used in the
                LDAPDefaultSpec option's -r, -s, or -M flags and if a bogus
                option was used. Problem noted by Allan E Johannesen of
                Worcester Polytechnic Institute.
        Prevent "token too long" message by shortening {currHeader} which
                could be too long if the last copied character was a quote.
                Problem detected by Jan Krueger of digitalanswers
                communications consulting gmbh.
        Additional IPv6 check for unspecified addresses. Patch from
                Jun-ichiro itojun Hagino of the KAME Project.
        Do not ignore the ClientPortOptions setting if DaemonPortOptions
                Modifier=b (bind to same interface) is set and the
                connection came in from the command line.
        Do not bind to the loopback address if DaemonPortOptions
                Modifier=b (bind to same interface) is set. Patch from
                John Beck of Sun Microsystems.
        Properly deal with open failures on non-optional maps used in
                check_* rulesets by returning a temporary failure.
        Buffered file I/O files were not being properly fsync'ed to disk
                when they were committed.
        Properly encode '=' for the AUTH= parameter of the MAIL command.
                Problem noted by Hadmut Danisch.
        Under certain circumstances the macro {server_name} could be set
                to the wrong hostname (of a previous connection), which may
                cause some rulesets to return wrong results. This would
                usually cause mail to be queued up and delivered later on.
        Ignore F=z (LMTP) mailer flag if $u is given in the mailer A=
                equate. Problem noted by Motonori Nakamura of Kyoto
                University.
        Work around broken accept() implementations which only partially
                fill in the peer address if the socket is closed before
                accept() completes.
        Return an SMTP "421" temporary failure if the data file can't be
                opened where the "354" reply would normally be given.
        Prevent a CPU loop in trying to expand a macro which doesn't exist
                in a queue run. Problem noted by Gordon Lack of Glaxo
                Wellcome.
        If delivering via a program and that program exits with EX_TEMPFAIL,
                note that fact for the mailq display instead of just showing
                "Deferred". Problem noted by Motonori Nakamura of Kyoto
                University.
        If doing canonification via /etc/hosts, try both the fully
                qualified hostname as well as the first portion of the
                hostname. Problem noted by David Bremner of the
                University of New Brunswick.
        Portability:
                Fix a compilation problem for mail.local and rmail if SFIO
                        is in use. Problem noted by Auteria Wally
                        Winzer Jr. of Champion Nutrition.
                IPv6 changes for platforms using KAME. Patch from
                        Jun-ichiro itojun Hagino of the KAME Project.
                OpenBSD 2.7 and higher has srandomdev(3). OpenBSD 2.8 and
                        higher has BSDI-style login classes. Patch from
                        Todd C. Miller of Courtesan Consulting.
                Unixware 7.1.1 doesn't allow h_errno to be set directly if
                        sendmail is being compiled with -kthread. Problem
                        noted by Orion Poplawski of CQG, Inc.
        CONTRIB: buildvirtuser: Substitute current domain for $DOMAIN and
                current left hand side for $LHS in virtuser files.
        DEVTOOLS: Do not pass make targets to recursive Build invocations.
                Problem noted by Jeff Bronson of J.D. Bronson, Inc.
        MAIL.LOCAL: In LMTP mode, do not return errors regarding problems
                storing the temporary message file until after the remote
                side has sent the final DATA termination dot. Problem
                noted by Allan E Johannesen of Worcester Polytechnic
                Institute.
        MAIL.LOCAL: If LMTP mode is set, give a temporary error if users
                are also specified on the command line. Patch from
                Motonori Nakamura of Kyoto University.
        PRALIASES: Skip over AliasFile specifications which aren't based on
                database files (i.e., only show dbm, hash, and btree).
        Renamed Files:
                devtools/OS/OSF1.V5.0 => devtools/OS/OSF1.V5.x

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Comment: Processed by Mailcrypt 3.5.5, an Emacs/PGP interface
Charset: noconv

iQCVAwUBOpw5l3xLZ22gDhVjAQGFggQAtlWW8jGQ5NG5JXE2L1MsVFyz8604hPKG
EzEKwoAZAcTj+h++4j8fE33N0cqSo4mnh1tBVcrz8XhkrE2/cdiXATFEYxzJyZYQ
6W54Y3oJxkowx3I/7l7PSgisada/Adiy9M2XGW1MZtzGmpNmVj+b8CpteN91XKEW
UUp4FUEY/U8=
=+G12
-----END PGP SIGNATURE-----

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]