SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for cyradm-2.4.18-1.1.i586.rpm :

* Sun Aug 23 2015 ajAATTajaissle.de- Update to 2.4.18
* Security fix: handle urlfetch range starting outside message range
* A bunch of cleanups and fixes to compiling
* A bunch of sieve cleanups
* Enhanced SSL/TLS configuration options
* Disable use of SSLv2/SSLv3
* Allow SQL backend for mboxlist and statuscache (thanks Julien Coloos)
* Fixed Task #116: correct LIST response for domains starting with ‘inbox.’
* Fixed Task #76: fixed lmtpd userdeny db checks (thanks Leena Heino)
* Fixed bug #3856: lmtpd now performs userdeny checks
* Fixed bug #3848: support charset aliases in encoded headers
* Fixed bug #3853: disconnect_on_vanished_mailbox: release mailbox lock before exiting (thanks Wolfgang Breyha)
* Fixed bug #3415: fixed nntpd LIST/GROUP bug
* Fixed bug #3784: no longer crash in THREAD REFERENCES when messages reference themselves
* Fixed bug #3757: don’t segfault on mailbox close with no user
* New ssl/tls configuration options tls_compression: 0 Enable TLS compression. Disabled by default. tls_eccurve: prime256v1 Select the elliptic curve used for ECDHE. tls_prefer_server_ciphers: 0 Prefer the cipher order configured on the server-side. tls_versions: tls1_0 tls1_1 tls1_2 Disable SSL/TLS protocols not in this list.- Removed the following patches (included upstream): - cyrus-imapd-2.4.17_tls-session-leak.patch - cyrus-imapd.tls_options.patch- Added patch cyrus-imapd-2.4.18-implicit_definitions.patch: - Have the correct #include when using implicit definitions
* Mon Dec 08 2014 ajAATTajaissle.de- Changed cyrus-imapd-rc-2.tar.gz/cron.daily.cyrus to use \'su -s /bin/bash - cyrus\', as the default shell is now /sbin/nologin [boo#908014]- Changed cyrus-imapd-rc-2.tar.gz/rc.cyrus to set /var/run/cyrus-master.pid as the PID file (was: /var/run/cyrus.pid) [boo#908006]
* Fri Nov 21 2014 tchvatalAATTsuse.com- Drop unused patch:
* KOLAB_cyrus-imapd-2.3.18_cross-domain-acls.patch
* Fri Nov 14 2014 rhaferAATTsuse.com- Replace the TLS/POODLE patch with what was merged into the upstream git repo:
* cyrus-imapd.tls_options.patch
* Obsoletes patches cyrus-imapd.tls_tlsonly.patch and cyrus-imapd.tls_ec.patch- Add a default tls_versions settings to imapd.conf which disables POODLE affected SSL versions.
* Sat Oct 18 2014 johannesAATTlst.de- Add two patches from Kristian Kraemmer Nielsen found on the info-cyrus mailing list (http://lists.andrew.cmu.edu/pipermail/info-cyrus/2014-October/037708.html)
* cyrus-imapd.tls_ec.patch - adding tls_ec for Perfect Forward Secrecy
* cyrus-imapd.tls_tlsonly.patch - add tlsonly config option to fix POODLE vulnerability
* Wed Jan 29 2014 ajAATTajaissle.de- Added -snmp and -snmp-mibs sub-packages- Added README.SNMP to cyrus-imapd-rc-2.tar.gz- Added sysconfig option to use SNMP
* TODO: convert to a yesno option
* Fri Jan 24 2014 ajAATTajaissle.de- Updated to upstream release 2.4.17 (fate#311137) Changes to the Cyrus IMAP Server since 2.3.x:
* All databases are now default skiplist, and ctl_cyrusdb will automatically convert database type on startup.
* make_sha1 and make_md5 are removed (replaced by GUID and reconstruct changes)
* Charset subsystem rewritten - Unicode 5.2 rather than Unicode 2, and UTF-8 support in sieve.
* Core mailbox handling code largely rewritten with new APIs, CRC checksums, new locking mechanisms, merging of cyrus.index and cyrus.expunge, inclusion of user \\Seen flag, and much more.
* Replication code largely rewritten to provide better performance, consistency checking, and recovery from \"split-brain\" scenarios.
* Added support for LIST-EXTENDED IMAP extension. Removed support for deprecated (compile-time) LISTEXT IMAP extension. Based on work by Martin Konold
* Added support for ESEARCH IMAP extension.
* Added support for WITHIN extension to IMAP SEARCH.
* Added support for ENABLE IMAP extension.
* Added support for QRESYNC IMAP extension.
* Added support for URLAUTH=BINARY IMAP extension.
* Removed legacy IMAP[2|3|4] cruft. We now only support IMAPrev1 + extensions.
* Added support for marking QoS on traffic. (courtesy of Philip Prindeville )
* Modified user_deny.db code to open database once at service startup time.
* ... and hundreds of tiny things too numerous to mention in a short change log ...- Added the following patches: - cyrus-imapd-2.4.17_drac_auth.patch -- this is a rebased version of contrib/drac_auth.patch - cyrus-imapd-2.4.17_ptloader-ldap_user_attribute.patch -- Allow a result attribute to be specified with ptclient/ldap.c
* Supersedes KOLAB_cyrus-imapd-2.3.18_UID.patch- Renamed the following patches: - syslog-facility-doc.patch to cyrus-imapd-2.3.16_syslog-facility-doc.patch- Rebased the following patches for cyrus-imapd-2.4.17: - cyrus-imapd-db6.diff as cyrus-imapd-2.4.17_db6.patch - cyrus-imapd-openslp.patch as cyrus-imapd-2.4.17_openslp.patch - luser_relay.patch as cyrus-imapd-2.4.17_lmtp_catchall_mailbox.patch
* Option \'lmtp_luser_relay\' was renamed to \'lmtp_catchall_mailbox\'
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=2360 - cyrus-imapd_tls-session-leak.dif as cyrus-imapd-2.4.17_tls-session-leak.patch
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=3252 - cyrus-imapd-2.3.16-autocreate-0.10-0.drac.diff as cyrus-imapd-2.4.17_autocreate-0.10-0.patch - pie.patch as cyrus-imapd-2.4.17_pie.patch- Removed the following patches (unknown upstream status): - KOLAB_cyrus-imapd-2.3.18_Folder-names.patch
* There is no need for us to extend the mailbox name restrictions
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=2633 - KOLAB_cyrus-imapd-2.3.18_Groups2.patch
* optional/not needed
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=2632
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=3282 - KOLAB_cyrus-imapd-2.3.18_timsieved_starttls-sendcaps.patch
* Workaround for an issue with kontact/kio ~ KDE 3.5.9 - KOLAB_cyrus-imapd-2.3.18_UID.patch
* Superseded by cyrus-imapd-2.4.17_ptloader-ldap_user_attribute.patch- Removed the following patches (upstream inclusion): - charset.patch - cyrus-imapd-perl-5.14.patch - cyrus-imapd-perl-path.patch - cyrus-imapd_references_header-dos.dif - KOLAB_cyrus-imapd-2.3.18_Cyradm_Annotations.patch
* http://git.cyrusimap.org/cyrus-imapd/commit/?h=cyrus-imapd-2.4&id=98dd7a9130653ac848c0782a7688d26a090b494b - KOLAB_cyrus-imapd-2.3.18_Logging.patch
* Use \'auditlog: 1\' in imapd.conf
* https://bugzilla.cyrusimap.org/show_bug.cgi?id=2964 - user_deny_db-once.patch- Changed cyrus-imapd-rc.tar.gz contents, now having cyrus-imapd-rc-2.tar.gz: - dir name now is SUSE (was: SuSE) - renamed README.SuSE -> README.SUSE - added annotation definitions for groupware folders - imapd.conf: added annotaion definitions and lmtp_fuzzy_mailbox_match - imapd.conf: changed path to TLS certs form /usr/ssl/ to /etc/SSL_accept - imapd.conf: set default \'delete_mode\' and \'expunge_mode\' to \'delayed\' - cyrus.conf: added more services, added deleteprune and expungeprune - moved DB_CONFIG into cyrus-imapd-rc.tar.gz- Spec file cleanup- Prepared systemd support
* with systemd, we use cyrus-imapd as service name
* we have a symlink \'rccyrus-imapd\' to \'/usr/sbin/service\'
* for compatibility, we have an alias \'rccyrus\' = \'rccyrus-imapd\'- New package: cyrus-imapd-utils, which now contains tools to test mail servers- New package: cyrus-imapd-cyradm, which now contains the cyradm tool- TODO: - Check KOLAB_cyrus-imapd-2.3.18_cross-domain-acls.patch
* Patch is optional
* https://roundup.kolab.org/issue1141 - systemd service not yet working as expected, so we disabled it atm
* Thu Jun 20 2013 ajAATTajaissle.de- Move kolab tag from package name to version field
* Fri Jun 14 2013 jengelhAATTinai.de- Add cyrus-imapd-db6.diff to fix compile abort with db >= 5
* Mon May 27 2013 wernerAATTsuse.de- Package perl-Cyrus-SIEVE-managesieve provides the sieveshell as well as the package python-managesieve, therefore make them conflicting
* Tue May 21 2013 ajAATTajaissle.de- Added /var/lib/imap/ptclient to %files section
* Fri Feb 15 2013 ajAATTajaissle.de- enable --with-ldap option
* Tue Jun 19 2012 meissnerAATTsuse.com- allocate the right size (reported by frerichsAATTrz.uni-kiel.de)
* Fri Dec 02 2011 cooloAATTsuse.com- add automake as buildrequire to avoid implicit dependency
* Wed Oct 05 2011 rhaferAATTsuse.de- Update to 2.3.18: Malicious NNTP clients could bypass the authentication and execute commands that normally require authentication. (bnc#719998, CVE-2011-3372)
* Tue Sep 27 2011 meissnerAATTsuse.de- parallel make is not possible, see openSUSE:Factory:PowerPC build failure.
* Wed Sep 21 2011 rhaferAATTsuse.de- Update to 2.3.17. Only change:
* includes the nntpd bufferoverflow patch- Refreshed KOLAB patches- Fixed a potential DoS bug, when server-side threading is used (bnc#718428)
* Sun Sep 18 2011 jengelhAATTmedozas.de- Remove redundant tags/sections from specfile- Use %_smp_mflags for parallel build
* Thu Sep 01 2011 rhaferAATTsuse.de- Fixed a buffer overflow in nntpd (bnc#715251)
* Mon Jun 20 2011 rhaferAATTsuse.de- TLS initialization failures could lead to a bdb resource leak resulting lmtpd to stop delivering mails. (bnc#606710, cyrus-bug#3252)
* Mon May 23 2011 rhaferAATTsuse.de- Fixed STARTTLS plaintext command injection vulnerability (bnc#694247, cyrus-bug#3425)- Fixed building against newer perl release (5.14)
* Tue Dec 07 2010 cooloAATTnovell.com- remove /var/adm/perl-modules
* Fri Nov 19 2010 rhaferAATTnovell.com- Fixed cronjob to include the correct path to ctl_mboxlist (bnc#650919)
* Wed Oct 27 2010 rhaferAATTnovell.com- removed unneeded authid_normalize.patch the same functionality is already available through \"username_tolower\" since quite some time.
* Thu Sep 30 2010 rhaferAATTnovell.com- Check for libdb 4.8 presence
* Sun Jun 13 2010 rbosAATTopensuse.org- Define and use _name because the macro expansion is not smart enough. Without this construction the name definition of cyrus-imapd-kolab is changed to cyrus-imapd.
* Mon May 31 2010 rhaferAATTnovell.com- Don\'t create unneeded /var/lib/db/deliverdb directory- Add a default DB_CONFIG to avoid berkely db errors for deliver.db (bnc#606710)
* Wed May 19 2010 rhaferAATTnovell.com- Removed unneeded useradd call from %install section- Fix the package naming for kolab package again (the last sumbit request broke that accidently)
* Mon May 03 2010 rhaferAATTnovell.com- Only try to open user_deny.db once upon startup (bnc#601971). Backported from cvs HEAD.
* Fri Apr 30 2010 rhaferAATTnovell.com- removed some unneeded patches- added missing tags to init script
* Wed Apr 28 2010 rhaferAATTnovell.com- Changed cyrus\' homedir to /var/lib/imap
* Tue Apr 13 2010 rbosAATTopensuse.org- Remove the obsolete tag \"AutoReqProv: on\", its default value is already \"on\".
* Mon Apr 12 2010 rbosAATTopensuse.org- Use cyrus-imapd-kolab when the package is build with kolab enabled- Use the preferred Requires(pre) tag instead of PreReq
* Fri Apr 09 2010 rhaferAATTnovell.com- Adjusted documentation to reflect the correct syslog facility that the packages are build with (\"daemon\" instead of \"local6\")
* Tue Mar 30 2010 rbosAATTopensuse.org- Removed Patch101 KOLAB_cyrus-imapd-%{version}_Annotations2.patch- Change Source107 to Patch107
* Tue Mar 30 2010 rhaferAATTnovell.com- Mention KOLAB_cyrus-imapd-2.3.16_cross-domain-acls.patch in the spec file
* Wed Feb 24 2010 rbosAATTopensuse.org- Replaced the 2.3.14 Kolab patches with their 2.3.16 equivalents KOLAB_cyrus-imapd-
*_Cyradm_Annotations.patch KOLAB_cyrus-imapd-
*_Folder-names.patch KOLAB_cyrus-imapd-
*_Groups2.patch KOLAB_cyrus-imapd-
*_Logging.patch KOLAB_cyrus-imapd-
*_timsieved_starttls-sendcaps.patch KOLAB_cyrus-imapd-
*_UID.patch- Removed the patch KOLAB_cyrus-imapd-2.3.14_Annotations2.patch as this is now part of cyrus- Added patch KOLAB_cyrus-imapd-2.3.16_cross-domain-acls.patch. This patch can not be directly applied, it needs to recreated due to the patches applied by openSUSE.
* Tue Feb 23 2010 rhaferAATTnovell.com- Fixed crasher in lmtpproxy when backend server returns an empty SASL mechlist (bnc#551346)
* Mon Jan 25 2010 rhaferAATTnovell.com- updated autocreate patch to avoid \"no-return-in-nonvoid-function\" failures on openSUSE 11.1
* Wed Jan 13 2010 rhaferAATTnovell.com- Updated to 2.3.16
* Added user_deny.db to be able to selectively deny users access to Cyrus services.
* Added disconnect_on_vanished_mailbox option. See imapd.conf(5) for details
* Reworked SQL detection code in configure. See install-upgrade.html for more details.
* Added popuseimapflags option which enables setting and obeying IMAP flags in the POP server.
* Added optimized method of handling an empty maildrop in pop3d. Requires statuscache to be enabled.
* Added annotation_definitions option for specifying external (third-party) annotations.
* Added sync_compress option to compress replication traffic
* Added user_folder_limit option to limit the number of folders a non-admin user is allowed to create.
* Added -x option to cyr_expire to disable expunge
* Track idle state so a shutdown doesn\'t leave idled killing random other processes on a busy system
* Fix missing closedir() - bug #3159
* Make Cyrus compile with older GCC
* Tue Dec 01 2009 rbosAATTopensuse.org- Changed capitalization of perl-Cyrus-Imap into perl-Cyrus-IMAP as it used to be. It changed in 1 of the previous updates, due to a typo.
* Mon Nov 30 2009 rbosAATTopensuse.org- Subpackages are now also renamed when cyrus is build with kolab support- Renamed _enable_kolab to with_kolab. What seem to be more in line with the rpm conventions. There are macros like %%{with } and %%{bcond_with }, but unfortenately they did not work for me.
* Wed Nov 25 2009 rhaferAATTnovell.com- Renumber kolab patches to start with 100- cyrus-imapd-kolab now conflicts with cyrus-imapd
* Sat Nov 21 2009 rbosAATTopensuse.org- Added a switch to build Kolab enabled rpms, (cyrus with patches needed by the groupware project Kolab)- Added cyrus-imapd-2.3.14 patches for KOLAB- Updated patch ptclient_afskrb_return.patch to return NULL instead of 0
* Tue Nov 03 2009 cooloAATTnovell.com- updated patches to apply with fuzz=0
* Mon Sep 28 2009 rhaferAATTnovell.com- Fixed init script dependencies. saslauthd is not a hard requirement for cyrus-imapd (bnc#538852)
* Wed Sep 23 2009 rhaferAATTnovell.com- fixed multiple buffer overflows in the SIEVE code, caused by unsafe usage of the sprintf function (bnc#539877, CVE-2009-3235)- Added flex and bison to buildrequires as the above bugfix requires the sieve parser code to be regenerated.
* Tue Sep 08 2009 rhaferAATTnovell.com- fixed buffer overflow in SIEVE implementation, caused by the incorrect use of sizeof() on a character pointer rather than a character buffer (bnc#537128, cert-vu#336053)
* Thu Sep 03 2009 rhaferAATTnovell.com- fixed typo in cron-script
* Tue Jul 14 2009 rhaferAATTnovell.com- warning fixes for gcc 4.4
* Mon Jun 29 2009 rhaferAATTnovell.com- removed obsolete configure options and resorted the rest for better readability
* Mon Mar 30 2009 rhaferAATTsuse.de- Updated to 2.3.14
* Fixed incompatibility between older ManageSieve clients and newer servers that issue an auto-capability response after AUTH with a SASL security layer.
* Fixed quota calculation to ignore files not mentioned in the index
* Correct cache truncation after an aborted append (was leaving empty holes in the cache file)
* Fixed ACLs copying when renaming users
* Fixed TLS session reuse
* Log more detail about changes done by a reconstruct (indicating that there were problems with the mailbox before hand - mainly as a debugging aid)
* Ensured that the longest possible named mailbox can still be deleted when delayed delete is enabled by increasing buffer sizes
* Add configuration option mailbox_default_options allowing (for example) modsequences to be turned on for all new mailboxes
* Various Replication fixes
  
ICM