head 1.14; access; symbols pkgsrc-2026Q1:1.14.0.60 pkgsrc-2026Q1-base:1.14 pkgsrc-2025Q4:1.14.0.58 pkgsrc-2025Q4-base:1.14 pkgsrc-2025Q3:1.14.0.56 pkgsrc-2025Q3-base:1.14 pkgsrc-2025Q2:1.14.0.54 pkgsrc-2025Q2-base:1.14 pkgsrc-2025Q1:1.14.0.52 pkgsrc-2025Q1-base:1.14 pkgsrc-2024Q4:1.14.0.50 pkgsrc-2024Q4-base:1.14 pkgsrc-2024Q3:1.14.0.48 pkgsrc-2024Q3-base:1.14 pkgsrc-2024Q2:1.14.0.46 pkgsrc-2024Q2-base:1.14 pkgsrc-2024Q1:1.14.0.44 pkgsrc-2024Q1-base:1.14 pkgsrc-2023Q4:1.14.0.42 pkgsrc-2023Q4-base:1.14 pkgsrc-2023Q3:1.14.0.40 pkgsrc-2023Q3-base:1.14 pkgsrc-2023Q2:1.14.0.38 pkgsrc-2023Q2-base:1.14 pkgsrc-2023Q1:1.14.0.36 pkgsrc-2023Q1-base:1.14 pkgsrc-2022Q4:1.14.0.34 pkgsrc-2022Q4-base:1.14 pkgsrc-2022Q3:1.14.0.32 pkgsrc-2022Q3-base:1.14 pkgsrc-2022Q2:1.14.0.30 pkgsrc-2022Q2-base:1.14 pkgsrc-2022Q1:1.14.0.28 pkgsrc-2022Q1-base:1.14 pkgsrc-2021Q4:1.14.0.26 pkgsrc-2021Q4-base:1.14 pkgsrc-2021Q3:1.14.0.24 pkgsrc-2021Q3-base:1.14 pkgsrc-2021Q2:1.14.0.22 pkgsrc-2021Q2-base:1.14 pkgsrc-2021Q1:1.14.0.20 pkgsrc-2021Q1-base:1.14 pkgsrc-2020Q4:1.14.0.18 pkgsrc-2020Q4-base:1.14 pkgsrc-2020Q3:1.14.0.16 pkgsrc-2020Q3-base:1.14 pkgsrc-2020Q2:1.14.0.14 pkgsrc-2020Q2-base:1.14 pkgsrc-2020Q1:1.14.0.10 pkgsrc-2020Q1-base:1.14 pkgsrc-2019Q4:1.14.0.12 pkgsrc-2019Q4-base:1.14 pkgsrc-2019Q3:1.14.0.8 pkgsrc-2019Q3-base:1.14 pkgsrc-2019Q2:1.14.0.6 pkgsrc-2019Q2-base:1.14 pkgsrc-2019Q1:1.14.0.4 pkgsrc-2019Q1-base:1.14 pkgsrc-2018Q4:1.14.0.2 pkgsrc-2018Q4-base:1.14 pkgsrc-2018Q3:1.13.0.98 pkgsrc-2018Q3-base:1.13 pkgsrc-2018Q2:1.13.0.96 pkgsrc-2018Q2-base:1.13 pkgsrc-2018Q1:1.13.0.94 pkgsrc-2018Q1-base:1.13 pkgsrc-2017Q4:1.13.0.92 pkgsrc-2017Q4-base:1.13 pkgsrc-2017Q3:1.13.0.90 pkgsrc-2017Q3-base:1.13 pkgsrc-2017Q2:1.13.0.86 pkgsrc-2017Q2-base:1.13 pkgsrc-2017Q1:1.13.0.84 pkgsrc-2017Q1-base:1.13 pkgsrc-2016Q4:1.13.0.82 pkgsrc-2016Q4-base:1.13 pkgsrc-2016Q3:1.13.0.80 pkgsrc-2016Q3-base:1.13 pkgsrc-2016Q2:1.13.0.78 pkgsrc-2016Q2-base:1.13 pkgsrc-2016Q1:1.13.0.76 pkgsrc-2016Q1-base:1.13 pkgsrc-2015Q4:1.13.0.74 pkgsrc-2015Q4-base:1.13 pkgsrc-2015Q3:1.13.0.72 pkgsrc-2015Q3-base:1.13 pkgsrc-2015Q2:1.13.0.70 pkgsrc-2015Q2-base:1.13 pkgsrc-2015Q1:1.13.0.68 pkgsrc-2015Q1-base:1.13 pkgsrc-2014Q4:1.13.0.66 pkgsrc-2014Q4-base:1.13 pkgsrc-2014Q3:1.13.0.64 pkgsrc-2014Q3-base:1.13 pkgsrc-2014Q2:1.13.0.62 pkgsrc-2014Q2-base:1.13 pkgsrc-2014Q1:1.13.0.60 pkgsrc-2014Q1-base:1.13 pkgsrc-2013Q4:1.13.0.58 pkgsrc-2013Q4-base:1.13 pkgsrc-2013Q3:1.13.0.56 pkgsrc-2013Q3-base:1.13 pkgsrc-2013Q2:1.13.0.54 pkgsrc-2013Q2-base:1.13 pkgsrc-2013Q1:1.13.0.52 pkgsrc-2013Q1-base:1.13 pkgsrc-2012Q4:1.13.0.50 pkgsrc-2012Q4-base:1.13 pkgsrc-2012Q3:1.13.0.48 pkgsrc-2012Q3-base:1.13 pkgsrc-2012Q2:1.13.0.46 pkgsrc-2012Q2-base:1.13 pkgsrc-2012Q1:1.13.0.44 pkgsrc-2012Q1-base:1.13 pkgsrc-2011Q4:1.13.0.42 pkgsrc-2011Q4-base:1.13 pkgsrc-2011Q3:1.13.0.40 pkgsrc-2011Q3-base:1.13 pkgsrc-2011Q2:1.13.0.38 pkgsrc-2011Q2-base:1.13 pkgsrc-2011Q1:1.13.0.36 pkgsrc-2011Q1-base:1.13 pkgsrc-2010Q4:1.13.0.34 pkgsrc-2010Q4-base:1.13 pkgsrc-2010Q3:1.13.0.32 pkgsrc-2010Q3-base:1.13 pkgsrc-2010Q2:1.13.0.30 pkgsrc-2010Q2-base:1.13 pkgsrc-2010Q1:1.13.0.28 pkgsrc-2010Q1-base:1.13 pkgsrc-2009Q4:1.13.0.26 pkgsrc-2009Q4-base:1.13 pkgsrc-2009Q3:1.13.0.24 pkgsrc-2009Q3-base:1.13 pkgsrc-2009Q2:1.13.0.22 pkgsrc-2009Q2-base:1.13 pkgsrc-2009Q1:1.13.0.20 pkgsrc-2009Q1-base:1.13 pkgsrc-2008Q4:1.13.0.18 pkgsrc-2008Q4-base:1.13 pkgsrc-2008Q3:1.13.0.16 pkgsrc-2008Q3-base:1.13 cube-native-xorg:1.13.0.14 cube-native-xorg-base:1.13 pkgsrc-2008Q2:1.13.0.12 pkgsrc-2008Q2-base:1.13 cwrapper:1.13.0.10 pkgsrc-2008Q1:1.13.0.8 pkgsrc-2008Q1-base:1.13 pkgsrc-2007Q4:1.13.0.6 pkgsrc-2007Q4-base:1.13 pkgsrc-2007Q3:1.13.0.4 pkgsrc-2007Q3-base:1.13 pkgsrc-2007Q2:1.13.0.2 pkgsrc-2007Q2-base:1.13 pkgsrc-2007Q1:1.11.0.12 pkgsrc-2007Q1-base:1.11 pkgsrc-2006Q4:1.11.0.10 pkgsrc-2006Q4-base:1.11 pkgsrc-2006Q3:1.11.0.8 pkgsrc-2006Q3-base:1.11 pkgsrc-2006Q2:1.11.0.6 pkgsrc-2006Q2-base:1.11 pkgsrc-2006Q1:1.11.0.4 pkgsrc-2006Q1-base:1.11 pkgsrc-2005Q4:1.11.0.2 pkgsrc-2005Q4-base:1.11 pkgsrc-2005Q3:1.10.0.6 pkgsrc-2005Q3-base:1.10 pkgsrc-2005Q2:1.10.0.4 pkgsrc-2005Q2-base:1.10 pkgsrc-2005Q1:1.10.0.2 pkgsrc-2005Q1-base:1.10 pkgsrc-2004Q4:1.9.0.2 pkgsrc-2004Q4-base:1.9 pkgsrc-2004Q3:1.8.0.6 pkgsrc-2004Q3-base:1.8 pkgsrc-2004Q2:1.8.0.4 pkgsrc-2004Q2-base:1.8 pkgsrc-2004Q1:1.8.0.2 pkgsrc-2004Q1-base:1.8 pkgsrc-2003Q4:1.6.0.2 pkgsrc-2003Q4-base:1.6 netbsd-1-6-1:1.3.0.2 netbsd-1-6-1-base:1.3; locks; strict; comment @# @; 1.14 date 2018.10.18.19.54.32; author bsiegert; state Exp; branches; next 1.13; commitid 1qmstVy5pJTEJtWA; 1.13 date 2007.06.12.21.43.30; author heinz; state Exp; branches 1.13.98.1; next 1.12; 1.12 date 2007.05.02.15.20.45; author heinz; state Exp; branches; next 1.11; 1.11 date 2005.11.13.22.48.32; author heinz; state Exp; branches; next 1.10; 1.10 date 2005.01.15.21.44.55; author schmonz; state Exp; branches; next 1.9; 1.9 date 2004.10.12.00.11.10; author heinz; state Exp; branches; next 1.8; 1.8 date 2003.12.27.19.16.04; author heinz; state Exp; branches; next 1.7; 1.7 date 2003.12.02.12.36.00; author grant; state Exp; branches; next 1.6; 1.6 date 2003.11.03.00.56.26; author heinz; state Exp; branches; next 1.5; 1.5 date 2003.05.22.11.41.03; author abs; state Exp; branches; next 1.4; 1.4 date 2003.04.15.00.02.25; author heinz; state Exp; branches; next 1.3; 1.3 date 2003.02.02.19.38.40; author heinz; state Exp; branches; next 1.2; 1.2 date 2002.10.20.20.09.06; author heinz; state Exp; branches; next 1.1; 1.1 date 2002.10.08.00.49.23; author heinz; state Exp; branches; next ; 1.13.98.1 date 2018.10.20.15.59.14; author spz; state Exp; branches; next ; commitid i2Ot61qaBvhCnIWA; desc @@ 1.14 log @Update spamassassin to 3.4.2. From Attila Fueloep in pull request NetBSD/pkgsrc#32. Apache SpamAssassin 3.4.2 contains numerous tweaks and bug fixes over the past three and 1/2 years. As we release 3.4.2, we are preparing 4.0.0 which will move us into a full UTF-8 environment. We expect one final 3.4.3 release. As with any release there are a number of functional patches, improvements as well as security reasons to upgrade to 3.4.2. In this case we have over 3 years of issues being resolved at once. And we are laying thr groundwork for version 4.0 which is is designed to more natively handle UTF-8. However, there is one specific pressing reason to upgrade. Specifically, we will stop producing SHA-1 signatures for rule updates. This means that while we produce rule updates with the focus on them working for any release from v3.3.2 forward, they will start failing SHA-1 validation for sa-update. *** If you do not update to 3.4.2, you will be stuck at the last ruleset with SHA-1 signatures in the near future. *** Full release notes at http://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.2.txt. @ text @$NetBSD: patch-ae,v 1.13 2007/06/12 21:43:30 heinz Exp $ - pkgsrc sets default paths for rules and configuration data --- spamd/spamd.raw.orig 2007-04-23 14:15:48.000000000 +0200 +++ spamd/spamd.raw @@@@ -2664,12 +2665,12 @@@@ Create user preferences files if they do =item B<-C> I, B<--configpath>=I Use the specified path for locating the distributed configuration files. -Ignore the default directories (usually C or similar). +Ignore the default directories (usually C<@@@@DEF_RULES_DIR@@@@> or similar). =item B<--siteconfigpath>=I Use the specified path for locating site-specific configuration files. Ignore -the default directories (usually C or similar). +the default directories (usually C<@@@@LOCAL_RULES_DIR@@@@> or similar). =item B<--cf='config line'> @ 1.13 log @Updated to version 3.2.1. Pkgsrc changes: - Added some comments to patch files. - Adapting patch-aq to changes in the README file. - Added forgotten direct requirement for p5-Compress-Zlib. - Since 3.2.0 at least version 3.43 of p5-HTML-Parser is needed. - Installation to DESTDIR is possible as root. - Substituted correct paths in spamc.pod (source file for spamc.1). - Added VARBASE to BUILD_DEFS to silence pkglint warnings. Changes since version 3.2.0: ============================ 3.2.1 is a major bug-fix release, including a potential local DoS. The major highlights are: - bug 5480: fix for CVE-2007-2873: a local user symlink-attack DoS vulnerability. It only affects systems where spamd is run as root, is used with vpopmail or virtual users via the "-v"/"--vpopmail" OR "--virtual-config-dir" switch, AND with the "-x"/"--no-user-config AND WITHOUT the "-u"/"--username" switch AND with the "-l"/"--allow-tell" switch. This is not default on any distro package, and is not a common configuration. More details of the vulnerability can be read at . - bug 5488: zero some rules causing false positives: FH_HOST_EQ_D_D_D_DB and FH_HOST_EQ_D_D_D_D. - bug 5257: re-raise autolearn ham threshold to 1.0; the lower value used in 3.2.0 was creating problems. - bug 5422: in spamd, deleting hash entries from the SIGCHLD signal handler is unsafe, causes corruption of the data structure, and results in 'prefork: ordered child N to accept, but they reported state '1', killing rogue' errors. fix. - bug 5102: tighten up regexp for FORGED_HOTMAIL_RCVD to avoid some FPs. - bug 5457: spamc build and test should handle not having zlib available. - bug 5379: spamd could crash at startup if its preloading temporary directory already exists. fix. - bug 4616: spamc config can cause command line options to be ignored. fix. - bug 5485: zero score DK/DKIM_POLICY_SIGNSOME rules since they'll always fire due to defaults (unless there's an explicit SIGNALL policy). - bug 5492: VBounce rule was looking in header instead of body for whitelisted relays. fix. - bug 5487: prevent multiple "urirhssub"s using the same zone from overwriting each other. - bug 5432 - Change default in Win32 build to not build spamc. - bug 5446: add --updatedir option to sa-compile and remove inaccurate re2c required version info from pod. - bug 5436: add omitted "ifplugin" statements to the configuration, which would otherwise cause lint errors if the default plugins were disabled. - bug 5477: prevent Rule2XSBody info message from appearing on stderr during spamd startup. @ text @d1 1 a1 1 $NetBSD: patch-ae,v 1.12 2007/05/02 15:20:45 heinz Exp $ a6 12 @@@@ -2404,8 +2404,9 @@@@ sub backtrace_handler { } sub daemonize { - # Pretty command line in ps - $0 = join (' ', $ORIG_ARG0, @@ORIG_ARGV) unless would_log("dbg"); + # no pretty 'ps' command line (easier for pkgsrc rc script) + # # Pretty command line in ps + # $0 = join (' ', $ORIG_ARG0, @@ORIG_ARGV) unless would_log("dbg"); # be a nice daemon and chdir to the root so we don't block any # unmount attempts @ 1.13.98.1 log @Pullup ticket #5846 - requested by bsiegert mail/spamassassin: security update Revisions pulled up: - mail/spamassassin/Makefile 1.132 - mail/spamassassin/distinfo 1.72 - mail/spamassassin/patches/patch-Makefile.PL 1.3 - mail/spamassassin/patches/patch-ae 1.14 - mail/spamassassin/patches/patch-lib_Mail_SpamAssassin_DnsResolver.pm deleted - mail/spamassassin/patches/patch-lib_Mail_SpamAssassin_PerMsgStatus.pm deleted - mail/spamassassin/patches/patch-sa-compile deleted - mail/spamassassin/patches/patch-spamc_libspamc.c 1.2 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: bsiegert Date: Thu Oct 18 19:54:32 UTC 2018 Modified Files: pkgsrc/mail/spamassassin: Makefile distinfo pkgsrc/mail/spamassassin/patches: patch-Makefile.PL patch-ae patch-spamc_libspamc.c Removed Files: pkgsrc/mail/spamassassin/patches: patch-lib_Mail_SpamAssassin_DnsResolver.pm patch-lib_Mail_SpamAssassin_PerMsgStatus.pm patch-sa-compile Log Message: Update spamassassin to 3.4.2. From Attila Fueloep in pull request NetBSD/pkgsrc#32. Apache SpamAssassin 3.4.2 contains numerous tweaks and bug fixes over the past three and 1/2 years. As we release 3.4.2, we are preparing 4.0.0 which will move us into a full UTF-8 environment. We expect one final 3.4.3 release. As with any release there are a number of functional patches, improvements as well as security reasons to upgrade to 3.4.2. In this case we have over 3 years of issues being resolved at once. And we are laying thr groundwork for version 4.0 which is is designed to more natively handle UTF-8. However, there is one specific pressing reason to upgrade. Specifically, we will stop producing SHA-1 signatures for rule updates. This means that while we produce rule updates with the focus on them working for any release from v3.3.2 forward, they will start failing SHA-1 validation for sa-update. *** If you do not update to 3.4.2, you will be stuck at the last ruleset with SHA-1 signatures in the near future. *** Full release notes at http://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.2.txt. To generate a diff of this commit: cvs rdiff -u -r1.131 -r1.132 pkgsrc/mail/spamassassin/Makefile cvs rdiff -u -r1.71 -r1.72 pkgsrc/mail/spamassassin/distinfo cvs rdiff -u -r1.2 -r1.3 pkgsrc/mail/spamassassin/patches/patch-Makefile.PL cvs rdiff -u -r1.13 -r1.14 pkgsrc/mail/spamassassin/patches/patch-ae cvs rdiff -u -r1.5 -r0 \ pkgsrc/mail/spamassassin/patches/patch-lib_Mail_SpamAssassin_DnsResolver.pm cvs rdiff -u -r1.3 -r0 \ pkgsrc/mail/spamassassin/patches/patch-lib_Mail_SpamAssassin_PerMsgStatus.pm cvs rdiff -u -r1.1 -r0 pkgsrc/mail/spamassassin/patches/patch-sa-compile cvs rdiff -u -r1.1 -r1.2 \ pkgsrc/mail/spamassassin/patches/patch-spamc_libspamc.c @ text @d1 1 a1 1 $NetBSD$ d7 12 @ 1.12 log @Updated to version 3.2.0. Pkgsrc changes: - Removed PKG_DESTDIR_SUPPORT until the issue with encoded ownership in +INSTALL files is resolved. - made pkglint shut up about some warnings (CONFIGURE_DIRS, BUILD_DIRS, hidden commands with @@) - parse-rules-for-masses has moved in the source archive. - The directories "masses" and "tools" are no longer distributed in the archive so I simplified the post-install target. - Since "tools" is gone, the post-extract: target is obsolete. - MESSAGE now points at sa-compile. - Spamc depends on zlib now, so we needed the appropriate buildlink3 file. Summary of changes since version 3.1.8: ======================================= * new behavior for trusted_networks/internal_networks: the 127.* network is now always considered trusted and internal, regardless of configuration. * bug 3109: short-circuiting of 'definite ham' or 'definite spam' messages based on individual short-circuit rules using the 'shortcircuit' setting, by Dallas Engelken . * bug 5305: implement 'msa_networks', for ISPs to specify their Mail Submission Agents, and extend network trust accordingly. * bug 4636: Add support for charset normalization, so rules can be written in UTF-8 to match text in other charsets. * sa-compile: compilation of SpamAssassin rules into a fast parallel-matching DFA, implemented in native code. * "tflags multiple": allow writing of rules that count multiple hits in a single message. * bug 4363: if a message uses CRLF for line endings, we should use it as well, otherwise stay with LF as usual; important for Windows users. * bug 4515: content preview was omitting first paragraph when no Subject: header was present. * The third-party modules used by sa-update are now required by the SpamAssassin package, instead of being optional. * Bug 5165: 'sa-update --checkonly' added to check for updates without applying them; thanks to * Bugs 4606, 4609: Adjust MIME parsing limits for nested multipart/* and message/rfc822 MIME parts. * bug 5295: add 'whitelist_auth', to whitelist addresses that send mail using sender-authorization systems like SPF, Domain Keys, and DKIM * Removed dependency on Text::Wrap CPAN module. * Received header parsing updates/fixes/additions. Spamc / spamd: * bug 4603: Mail::SpamAssassin::Spamd::Apache2 -- mod_perl2 module, implementing spamd as a mod_perl module, contributed as a Google Summer of Code project by Radoslaw Zielinski. * bug 3991: spamd can now listen on UNIX domain, TCP, and SSL sockets simultaneously. Command-line semantics extended slightly, although fully backwards compatibly; add the --ssl-port switch to allow TCP and SSL listening at the same time. * bug 3466: do Bayes expiration, if required, after results have been passed back to the client from spamd; this helps avoid client timeouts. * more complete IPv6 support. * spamc: Add '-K' switch, to ping spamd. * spamc: add '-z' switch, which compresses mails to be scanned using zlib compression; very useful for long-distance use of spamc over the internet. * bug 5296: spamc '--headers' switch, which scans messages and transmits back just rewritten headers. This is more bandwidth-efficient than the normal mode of scanning, but only works for 'report_safe 0'. * Bump spamd's protocol version to 1.4, to reflect new HEADERS verb used for '--headers'. Mail::SpamAssassin modules and API: * bug 4589: allow M::SA::Message to use IO::File objects to read in message (same as GLOB). * bug 4517: rule instrumentation plugin hooks, to measure performance, from John Gardiner Myers . * add two features to core rule-parsing code; 1. optional behaviour to recurse through subdirs looking for .cf/.pre's, to support rules compilers working on rulesrc dir. 2. call back into invoking code on lint failure, so rule compiler can detect which rules exactly fail the lint check. * bug 5206: detect duplicate rules, and silently merge them internally for greater efficiency. * bug 5243: add Plugin::register_method_priority() API, allowing plugins to control the relative ordering of plugin callbacks relative to other plugins' implementations. * Reduced memory footprint. Plugins: * bug 5236: Support Mail::SPF replacement for Mail::SPF::Query. * bug 5127: allow mimeheader :raw rules to match newlines and folded-header whitespace in MIME header strings. * bug 4770: add ASN.pm plugin, contributed by Matthias Leisi * bug 5271: move ImageInfo ruleset into 3.2.0 core rules, thanks to Dallas Engelken . * VBounce ruleset and plugin: detect spurious bounce messages sent by broken mail systems in response to spam or viruses. (Based on Tim Jackson's "bogus-virus-warnings.cf" ruleset.) * DomainKeys/DKIM: Mail::DKIM is now preferred over Mail::DomainKeys, since the latter module is no longer actively maintained, and Mail::DKIM can handle both DomainKeys and DKIM signatures. * DKIM: separate signature verification from fetching a policy: can save a DNS lookup for each unverified message by setting score to 0 for all policy-related rules (DKIM_POLICY_SIGNALL, DKIM_POLICY_SIGNSOME, and DKIM_POLICY_TESTING). (thanks to Mark Martinec) * DKIM: support testing flags in the public key, as well as in the policy record. (thanks to Mark Martinec) * DKIM: skip fetching a policy (SSP) if a signature does verify, according to draft-allman-dkim-ssp-02 (thanks to Mark Martinec) * Move rule functionality and checking into separate Check plugin, allowing third parties to implement alternative scanner core algorithms. * core EvalTests code moved into various plugins. * Plus lots of miscellaneous bug fixes. @ text @d1 3 a3 1 $NetBSD$ @ 1.11 log @Updated to version 3.1.0. Pkgsrc changes: - p5-Storable is no longer a necessary. - Let DragonFlyBSD also use the rc.d script (patch-ad). - Sa-update needs p5-libwww (for LWP::UserAgent, HTTP::Date), p5-Archive-Tar and p5-IO-Zlib. - Many of the plugins are available as pkgsrc packages (p5-Mail-SPF-Query, p5-IP-Country, p5-Net-Ident, ...) but are not required. - Renamed some options to follow the naming conventions described in the pkgsrc guide. - Removed patch-ax again; it is already incorporated in 3.1.0. - Reworked DESCR to use less than 25 lines. - Removed SPAMASSASSIN_VERSION for clarity of DISTNAME and PKGNAME. - Prepended variables internal to the package with an underscore. - Rearranged MAKE_PARAMS alphabetically. - Simplified some internal variables (concatenation instead of substitution: _EGDIR, _DOCDIR,...) - Loop variables use all lower-case now. - Added a rule to lower score for mail from pkgsrc-bugs in netbsd_lists.cf. - The test t/spf.t (fails for SPF_HELO_*) has a know problem (SA Bug 4685). Relevant changes since version 3.0.4: ===================================== - Apache preforking algorithm adopted; number of spamd child processes is now scaled, according to demand. This provides better VM behaviour when not under peak load. - Inclusion of sa-update script which will allow for updates of rules and scores in between code releases. - added PostgreSQL, MySQL 4.1+, and local SDBM file Bayes storage modules. SQL storage is now recommended for Bayes, instead of DB_File. NDBM_File support has been dropped due to a major bug in that module. - detect legitimate SMTP AUTH submission, to avoid false positives on Dynablock-style rules. - new Advance Fee Fraud (419 scam) rules. - removed use of the Storable module, due to several reported hangs on SMP Linux machines. - Converted several rule/engine components into Plugins such as: AccessDB, AWL, Pyzor, Razor2, DCC, Bayes AutoLearn Determination, etc. - new plugins: DomainKeys (off by default), MIMEHeader: a new plugin to perform tests against header in internal MIME structure, ReplaceTags: plugin by Felix Bauer to support fuzzy text matching, WhiteListSubject: plugin added to support user whitelists by Subject header. - TextCat language guesser moved to a plugin. (This means "ok_languages" is no longer part of the core engine by default.) - Razor: disable Razor2 support by default per our policy, since the service is not free for non-personal use. It's trivial to reenable. - DCC: disable DCC for similar reasons, due to new license terms. - Net::DNS bug: high load caused answer packets to be mixed up and delivered as answers to the wrong request, causing false positives. worked around. - DNSBL lookups and other DNS operations are now more efficient, by using a custom single-socket event-based model instead of Net::DNS. - add support for accreditation services, including Habeas v2. - better URI parsing -- many evasion tricks now caught. - URIBL lookups are prioritized based on the location in the message the URI was found. - mass-check now supports reusing realtime DNSBL hit results, and sample-based Bayes autolearning emulation, to reduce complexity. - sa-learn, spamassassin and mass-check now have optional progress bars. - modify header ordering for DomainKeys compatibility, by placing markup headers at the top of the message instead at the bottom of the list. - spamd/spamc now support remote Bayes training, and reporting spam. - spamc now supports reading its flags from a configuration file using the -F switch, contributed by John Madden. - added SPF-based whitelisting. - Polish rules contributed by Radoslaw Stachowiak. - many rule changes and additions. @ text @d1 1 a1 1 $NetBSD: patch-ae,v 1.10 2005/01/15 21:44:55 schmonz Exp $ d3 1 a3 1 --- spamd/spamd.raw.orig Wed Sep 14 04:07:32 2005 d5 1 a5 1 @@@@ -2073,8 +2073,9 @@@@ sub backtrace_handler { d17 1 a17 1 @@@@ -2273,12 +2274,12 @@@@ Create user preferences files if they do d30 1 a30 1 =item B<-d>, B<--daemonize> @ 1.10 log @Update to 3.0.2. From the changelog: This release detects legitimate SMTP AUTH submission, to avoid false positives on Dynablock-style rules. The URIDNSBL plugin has been fixed to honor the uridnsbl_max_domains config option. Various documentation and rule fixes. The ability to deal with 'rewrite_header Subject' markup when no Subject header exists. 'make test' failure on Solaris has been fixed. pkgsrc changes: * Use subst.mk in pre-configure, rather than post-patch, for easier regeneration of patches. OK'd by heinz@@. @ text @d1 1 a1 1 $NetBSD: patch-ae,v 1.9 2004/10/12 00:11:10 heinz Exp $ d3 1 a3 1 --- spamd/spamd.raw.orig 2004-10-22 11:21:26.000000000 -0400 d5 2 a6 1 @@@@ -1811,8 +1811,9 @@@@ sub restart_handler { a8 1 d10 2 a11 2 - $0 = join ( ' ', $ORIG_ARG0, @@ORIG_ARGV ) unless ( $opt{'debug'} ); + # no pretty 'ps' command line (easier for NetBSD rc script) d13 1 a13 1 + # $0 = join ( ' ', $ORIG_ARG0, @@ORIG_ARGV ) unless ( $opt{'debug'} ); d15 3 a17 3 # Be a nice daemon and chdir() to the root so we don't block any unmount attempts chdir '/' or die "Can't chdir to /: $!\n"; @@@@ -1988,12 +1989,12 @@@@ Create user preferences files if they do @ 1.9 log @Update to version 3.0.0. Tested on NetBSD 1.6.2, Solaris 9 and Debian 3.0. Important changes since 2.64 (for details see the file 'Changes') - support for sender authentication using the Sender Policy Framework (SPF) - checking for web links of known spam advertisers (SURBL) - modular plugin architecture - improved SQL database support for storing user data in server installations - improved email classification - SpamAssassin is now part of the Apache Foundation @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- spamd/spamd.raw.orig Tue Sep 14 01:34:05 2004 d5 1 a5 1 @@@@ -1810,8 +1810,9 @@@@ sub restart_handler { d17 1 a17 1 @@@@ -1987,12 +1988,12 @@@@ Create user preferences files if they do @ 1.8 log @Update to version 2.61 Summary of major changes since 2.60 ----------------------------------- - Dramatically reduced memory usage of Bayes expiry. - avoid false positives on Outlook 2003 messages, mails from Mac, Palm, and localized versions of Eudora, several AOL MUAs, and newer versions of The Bat! - new set of French translations from Michel Bouissou - updated to reflect new Dynablock DNSBL location - avoids a possible hole that was giving AWL bonuses to spammer forgeries on some networks - miscellaneous bug fixes @ text @d3 1 a3 1 --- spamd/spamd.raw.orig Sat Nov 15 03:55:31 2003 d5 1 a5 2 @@@@ -208,8 +208,8 @@@@ if ($opt{'auth-ident'}) { } d7 11 a17 30 # Check for server certs -$opt{'server-key'} ||= "$LOCAL_RULES_DIR/certs/server-key.pem"; -$opt{'server-cert'} ||= "$LOCAL_RULES_DIR/certs/server-cert.pem"; +$opt{'server-key'} ||= "@@SA_SSLCERTS@@/server-key.pem"; +$opt{'server-cert'} ||= "@@SA_SSLCERTS@@/server-cert.pem"; if ($opt{'ssl'}) { eval { require IO::Socket::SSL }; die "fatal: SSL encryption requested, but IO::Socket::SSL is unavailable\n" if ($@@); @@@@ -1240,8 +1240,9 @@@@ sub restart_handler { use POSIX 'setsid'; sub daemonize { - # Pretty command line in ps - $0 = join(' ', $ORIG_ARG0, @@ORIG_ARGV) unless($opt{'debug'}); + # no pretty 'ps' command line (easier for NetBSD rc script) + # # Pretty command line in ps + # $0 = join(' ', $ORIG_ARG0, @@ORIG_ARGV) unless($opt{'debug'}); # Be a nice daemon and chdir() to the root so we don't block any unmount attempts chdir '/' or die "Can't chdir to /: $!\n"; @@@@ -1360,7 +1361,7 @@@@ Options: -a, --auto-whitelist, --whitelist Use auto-whitelists -c, --create-prefs Create user preferences files -C path, --configpath=path Path for default config files - --siteconfigpath=path Path for site configs (def: /etc/mail/spamassassin) + --siteconfigpath=path Path for site configs (def: @@@@LOCAL_RULES_DIR@@@@) -d, --daemonize Daemonize -h, --help Print usage message. -i ipaddr, --listen-ip=ipaddr,... Listen on the IP ipaddr (default: 127.0.0.1) @@@@ -1435,12 +1436,12 @@@@ Create user preferences files if they do @ 1.7 log @print correct path to config files in spamd usage message. @ text @d3 1 a3 1 --- spamd/spamd.raw.orig 2003-09-11 11:05:22.000000000 +1000 d5 1 a5 1 @@@@ -207,8 +207,8 @@@@ if ($opt{'auth-ident'}) { d16 1 a16 1 @@@@ -1221,8 +1221,9 @@@@ sub restart_handler { d28 1 a28 1 @@@@ -1341,7 +1342,7 @@@@ Options: d37 1 a37 1 @@@@ -1416,12 +1417,12 @@@@ Create user preferences files if they do @ 1.6 log @Update to version 2.60 (fixes PR pkg/23318): Summary of changes since 2.5x ----------------------------------- - spamd supports UNIX-domain sockets - SSL support for spamc/spamd now usable - improved Bayes text analysis - improved expiration of Bayes-DB - better detection of 'invisible text' and other obfuscation techniques in HTML - new RBL (eg SORBS, SpamCop, Osirusoft dropped) - better handling of RBL timeouts - support for Razor V1 dropped - more flexible header and report rewriting - Perl taint mode enabled by default - bug fixes - new rules @ text @d3 1 a3 1 --- spamd/spamd.raw.orig Thu Sep 11 03:05:22 2003 d28 24 @ 1.5 log @Update spamassassin to 2.55 Many small changes since 2.53, but difficult to pick out anything significant. @ text @d3 4 a6 4 --- lib/Mail/SpamAssassin/DBBasedAddrList.pm.orig 2003-03-28 21:26:12.000000000 +0000 +++ lib/Mail/SpamAssassin/DBBasedAddrList.pm @@@@ -5,7 +5,8 @@@@ use bytes; use Fcntl; d8 17 a24 5 # tell AnyDBM_File to prefer DB_File, if possible. -# BEGIN { @@AnyDBM_File::ISA = qw(DB_File GDBM_File NDBM_File SDBM_File); } +# Pkgsrc: enable following line because BayesStore.pm already broke the rule +BEGIN { @@AnyDBM_File::ISA = qw(DB_File GDBM_File NDBM_File SDBM_File); } # off until 3.0; there's lots of existing AWLs out there this breaks. d26 2 a27 1 use AnyDBM_File; @ 1.4 log @ Update to version 2.53. This also closes PR pkg/21114 (thanks to Todd Vierling for dynamic PLIST) Most serious bugs since release of SA 2.50 fixed (hence the 'long' delay for the Pkgsrc package). Dependence on procmail removed. You still need a mail delivery agent but procmail is only a recommendation, not a prerequisite. Runs on Solaris (somewhat tested on Solaris 8, feedback welcome). Includes some SSL support for spamc/spamd. Not yet recommended due to lurking bug(s) (SA bugzilla ID 1751). Uses Perl module DB_File now instead of NDBM_File. This changes the name and format of the auto-whitelist database ('auto-whitelist' instead of 'auto-whitelist.db' on NetBSD). ! This release adds/changes/removes configuration options, PLEASE use ! ! 'perldoc Mail::SpamAssassin::Conf' and make sure your mail ! ! configuration still works as expected. ! ========================================================================== Changes since 2.52: - corruption of Bayes db where nspam/nham was getting zeroed, fixed. - Bayes now has much lower lock timeouts for opportunistic expiry and auto-learning, to avoid overloading busy servers with an expiry run. (This may result in occasional "lock failed" messages in the syslog while you're doing manual sa-learn ops, but those are not serious; it just means that an auto-learn could not take place because the dbs were opened by you in another process.) - NDBM_File does not provide an EXISTS method, worked around. - BSMTP support (spamc -B) fixed. - Bayes allowed the user to 'forget' messages they hadn't learned. - sa-learn broken when installed in a non-standard location. - spamc was failing to dump message if out of memory. - add-all-addrs-to-blacklist was a no-op, fixed. - syslog-socket support was broken, fixed. - sslspamc compilation fixed. - SIGCHLD handling in spamd was causing an ugly warning on Red Hat 8. - user_prefs were left world-writable after auto-whitelist use. - Razor was zeroing %ENV; protected against this. - some test failures on 5.005 and with Razor fixed; some tests were also still using the user's Bayes dbs. - Windows portability fix in new Bayes journal code. - dialup_codes now a privileged setting. - clean PATH env variable immediately upon spamd start; fixed problem with taint mode failures when getting hostname in Perl 5.005. - NetBSD: fixed SSL support, spamd start script. - single-Received-header mails were not getting DNSBL checks. - some doco fixes. Changes since 2.51: - bug 1664: expiry imposed way too much load when a single site-wide Bayes db was used, fixed - bug 1672: a typo in a backported patch for 2.51 caused Bayes to sometimes not unlock the db, fixed - INSTALL now strongly recommends using DB_File - some NetBSD support fixes - bug 1601: option --syslog-socket wasn't implemented - bug 1260: corrected description of --nocreate-prefs option Changes since 2.50: - Bayes locking and concurrency issues fixed - Bayes expiration was not working; fixed - spamd was not enabling Bayes after auto-learning without restart; fixed - safer way to attach spams, for broken mail clients, using 'report_safe 2' - a few doco cleanups Main changes since 2.4x: - Bayesian filtering, using a Bayesian-style form of probability-analysis classification. This uses an algorithm based on the one detailed in Paul Graham's 'A Plan For Spam' paper, along with aspects taken from Graham Robinson's work, and the chi-combining technique developed by the SpamBayes project. - Auto-learning. This trains the Bayesian filter automatically, based on the results from traditional SpamAssassin diagnosis. It uses a set of heuristics and separate thresholds to ensure (as much as is possible) that it trains on guaranteed non-spam and spam. Old, unused tokens are automatically expired. - much-improved rule set. A whole new set of rules based on Message-Id analysis is now in place, which accurately detects forged headers from a wide range of spamware. Many inaccurate rules have been dropped. HTML tests much improved, with a set to detect image-only spam. - new default format for detected-spam messages; the message is encapsulated as a MIME part, with a preview and the spam report in the main part of the message. - Score sets. Based on whether you are using just SpamAssassin rules, adding network tests, and using a trained Bayesian database, SpamAssassin will use a set of scores appropriately to gain the maximum degree of accuracy. - Italian, Polish, Spanish, French and German rule sets and translations. - Much improved reliability with spamd. The problems with signals have been cleared up thanks to a pipe-based child tracking system, and all spamd-hanging bugs reported have proved unreproducable. - Unicode problems with Red Hat 8 and perl 5.8 fixed. Works on Perl 5.005, 5.6.x, and 5.8.x. - Taint-safe. SpamAssassin runs with perl's taint-checking enabled for better security. - Razor 1 support is now officially deprecated. - "spamc -c" was not working, fixed. This fix required increasing the revision of the spamd protocol; only difference is that now more than one protocol header can appear in the reply from spamd. - all fixes from 2.44 included. @ text @d3 12 a14 12 --- spamd/spamd.raw.orig Fri Mar 28 22:26:44 2003 +++ spamd/spamd.raw @@@@ -979,7 +979,8 @@@@ use POSIX 'setsid'; sub daemonize { - $0 = join(' ', $0, @@ARGV) unless($opt{'debug'});; # pretty command line in ps + # no pretty 'ps' command line (easier for NetBSD rc script) + # $0 = join(' ', $0, @@ARGV) unless($opt{'debug'});; # pretty command line in ps chdir '/' or die "Can't chdir to '/': $!"; $SIG{__WARN__} = sub { logmsg($_[0]); }; open STDIN,'/dev/null' or die "Can't read '/dev/null': $!"; @ 1.3 log @Maintenance update to 2.44 Parts of patch-ag and patch-ah as well as complete patch-aa could be removed again, they are now included in SA 2.44 (see below). #### official release announcement ############### This is a bug-fix release, which fixes the following bugs: - Backport fix for Bug 1306: Possible buffer overflow in libspamc when running in BSMTP mode (patch 1.15 -> 1.18) - Backport workaround from Bug 526: Failed sanity check because of clobbered STDOUT (patch 1.147 -> 1.148) - Backport fix for Debian Bug 160206: Insufficient buffer in libspamc (patch 1.8 -> 1.9) - Backport fix for warnings in sed_path (patch 1.141 -> 1.142) - Backport fix for Bug 1127: Existing lowercase x-spam-status header kills SpamAssassin (patch 1.40 -> 1.41) - localized %ENV to fix problem where Razor2 erases the PATH so DCC and pyzor don't work, etc. Note that this is *not* 2.50, which offers Bayesian filtering etc. These bugs are already fixed in the 2.50 CVS tree, but that is not yet ready for release. This is a stable maintainance release only. @ text @d3 1 a3 1 --- spamd/spamd.raw.orig Fri Jan 31 15:49:03 2003 d5 1 a5 1 @@@@ -837,7 +837,8 @@@@ d9 1 a9 1 - $0 = join(' ', $0, @@ARGV) unless($opt{'debug'}); # pretty command line in ps d11 1 a11 1 + # $0 = join(' ', $0, @@ARGV) unless($opt{'debug'}); # pretty command line in ps @ 1.2 log @Update to 2.43 Item 1) was already provided by 'inofficial' patch-af for 2.42 (now removed). Two new patches (-ag and -ah) from the SpamAssassin-current repository work around a roblem with razor2 timeouts. Logo 'ninjabutton.png' is now in the correct html directory. Official changes: 1) AWL change reverted; instead of decreasing the AWL bias gradually to allow frequently-seen addresses to get into the "nonspam" area, it now behaves like 2.31 did, in that the AWL simply represents the long-term average score from that correspondent. 2) core-dump bug in spamd worked around, _except for the "-m" switch_. The "-m" switch relies on signal handling in the Perl interpreter, which seems to have some bugs we cannot work around reliably on some platforms, so its use is no longer recommended. 3) some portability fixes for SunOS. @ text @d3 1 a3 1 --- spamd/spamd.raw.orig Mon Oct 14 18:44:42 2002 d5 1 a5 1 @@@@ -831,7 +831,8 @@@@ @ 1.1 log @Update to 2.42. Uses buildlink2 and module.mk. Some perl scripts for rule developers (in PREFIX/share/doc/spamassassin/{masses,tools}/) and a small SpamAssassin logo (PREFIX/share/doc/spamassassin/html/) are now included. New netbsd_lists.cf file to reduce false positives on NetBSD lists (so far, only some rules for netbsd-bugs). Changes: - bug fixes - new, better scores (intensive testing was done to improve on 2.40 and 2.41) - netbsd rc.d script works now with NetBSD 1.5 and 1.6 - management of addresses in the automatic whitlist now easier with dedicated options (--add-addr-to-whitelist, --remove-addr-from-whitelist) @ text @d3 1 a3 1 --- spamd/spamd.raw.orig Fri Oct 4 14:54:27 2002 d5 1 a5 1 @@@@ -834,7 +834,8 @@@@ @