Phil Pennock | 22 Nov 02:14 2014

[Bug 1550] system_filter.exim has bug in non-quoted filename matching regex

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1550

--- Comment #3 from Phil Pennock <pdp <at> exim.org>  2014-11-22 01:14:08 ---
Looks like this is http://files.directadmin.com/services/system_filter.exim
based originally on something Nigel wrote, but which was never distributed as
part of Exim.

I remember seeing this and using something like it, many years ago, but I think
that it was always a hack to try to get "something" working and, impressive
demonstration that it was, it became obsolete with the introduction of the
content scanning functionality into Exim.  What the filter does can be done
more cleanly directly in the Exim configuration via ACL rules using the content
scanning functionality.

So this system filter should be considered an obsolete example of how things
could be made to work in very old Exim, based upon something which Nigel posted
to the mailing-lists way back when (I _believe_ before he had commit access,
but could be wrong), but which is continuing to surprise when it resurfaces. 
If it was automatically installed as part of an Exim package for some
distribution, please talk with your OS vendor.

I encourage you to check out the
http://www.exim.org/exim-html-current/doc/html/spec_html/ch-content_scanning_at_acl_time.html
link which Nigel provided; in particular, "$mime_filename" and
"$mime_decoded_filename" if you want to look at the full filename.

--

-- 
(Continue reading)

Nigel Metheringham | 22 Nov 00:05 2014

[Bug 1550] system_filter.exim has bug in non-quoted filename matching regex

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1550

Nigel Metheringham <nigel <at> exim.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |INVALID

--- Comment #1 from Nigel Metheringham <nigel <at> exim.org>  2014-11-21 23:05:21 ---
There is no system_filter.exim distributed with exim.
Attempting to do content filtering - especially of MIME parts - in the system
filter is going to lead to a world of pain.

I suggest you use the content scanning capabilities:-
http://www.exim.org/exim-html-current/doc/html/spec_html/ch-content_scanning_at_acl_time.html

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

Michael Fischer v. Mollard | 21 Nov 00:59 2014
Picon

[Bug 1549] New: possible endless loop in malware.c with fsecure

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1549
           Summary: possible endless loop in malware.c with fsecure
           Product: Exim
           Version: N/A
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Content Scanning
        AssignedTo: tom <at> duncanthrax.net
        ReportedBy: lists <at> konfusator.de
                CC: exim-dev <at> exim.org

Created an attachment (id=761)
 --> (http://bugs.exim.org/attachment.cgi?id=761)
timeout while reading fsavd's answer

Exim can use F-Secure as av_scanner. It uses a Unix socket to send a filename
to fsavd, and then reads with

do{
…
}
while (Ustrstr(av_buffer, "OK\tScan ok.") == NULL);

the answer. Unfortunately there are sometimes cases, in which fsavd simply
(Continue reading)

Michael Fischer v. Mollard | 19 Nov 00:15 2014
Picon

[Bug 68] configurable limit for time spent on spam=...

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=68

Nigel Metheringham <nigel <at> exim.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|Exim 4.72                   |Exim 4.73
   Target Milestone|Exim 4.73                   |Exim 4.77

Michael Fischer v. Mollard <lists <at> konfusator.de> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |lists <at> konfusator.de

--- Comment #1 from Michael Fischer v. Mollard <lists <at> konfusator.de>  2014-11-18 23:15:30 ---
Other than described in this (rather old) report there is a reasonably timeout
since
http://git.exim.org/exim.git/commit/cfe75fc353d701560110e26fe3b1a6bab8cae2b4 :

> /* timeout for reading and writing spamd */
> #define SPAMD_TIMEOUT 120

But this is still a compile time limit, and it would be better if SPAMD_TIMEOUT
and also the similar MALWARE_TIMEOUT in malware.c could become configurable.

--

-- 
(Continue reading)

Andreas Metzler | 18 Nov 19:37 2014
Picon

[Bug 1547] New: 4.85rc1 tarball includes copies of rfc

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1547
           Summary: 4.85rc1 tarball includes copies of rfc
           Product: Exim
           Version: N/A
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Release process
        AssignedTo: nigel <at> exim.org
        ReportedBy: eximusers <at> bebt.de
                CC: exim-dev <at> exim.org

Hello,

4.85rc1 includes 4 IETF files

draft-ietf-dane-ops-06
draft-ietf-dane-smtp-with-dane-12.txt
draft-ietf-dane-smtp-with-dane.txt
rfc6698-dane.txt

Their license is considered non-free at least by Debian. Could you please
consider stopping to ship these in the tarball?

thanks, cu Andreas
(Continue reading)

Todd Lyons | 18 Nov 17:57 2014

Exim 4.85 RC1 uploaded


I have uploaded Exim 4.85 RC1 to
ftp://ftp.exim.org/pub/exim/exim4/test/ 

This release contains a few bugfixes and a couple of new Experimental
features. There were: test suite bugfixes, BSD compilation fixes,
documentation enhancements, a new ${sort expansion item, ability to
specify seperator for MX/SRV/TLSA lookup results, Redis lookup fix,
transport results processing fix, headers_remove fix, SSL certificate
management enhancements, OCSP fixes, certificate time processing uses
the cert timezone for output formatting, mime ACL bug fix, adjust
reading spool files to handle new options, LDAP enhancements, exigrep
enhancement, and more consistent Host logging.

A new Experimental feature EXPERIMENTAL_DANE has been added which is a
draft RFC which requires DNSSEC for the purpose of authenticating DNS
responses.

The Experimental feature EXPERIMENTAL_TPDA has been renamed to
EXPERIMENTAL_EVENT because it has been expanded beyond use in the
transport. The variable names have also changed, requiring some
modifications to the exim.conf if that feature was being used. Refer to
the doc/experimental-spec.txt file for more detail on the changes.

This release process is beginning a couple of months earlier
than would be normal so that these Experimental features can get some
real world use.

The ChangeLog/NewStuff/README.UPDATING can be reviewed at:

(Continue reading)

Heiko Schlittermann | 17 Nov 16:44 2014
Picon

wishlist? $config_dir

Hello,

to ease testing and configuration: what about having a

    $config_dir

expansion item? This item should contain the name of the directory 
where the running configuration was found. 

This would remove necessary macro magic.
It would allow such configuration lines as:

    domains = lsearch;$config_dir/domains

Any objections?

    Best regards from Dresden/Germany
    Viele Grüße aus Dresden
    Heiko Schlittermann
--

-- 
 SCHLITTERMANN.de ---------------------------- internet & unix support -
 Heiko Schlittermann, Dipl.-Ing. (TU) - {fon,fax}: +49.351.802998{1,3} -
 gnupg encrypted messages are welcome --------------- key ID: 7CBF764A -
 gnupg fingerprint: 9288 F17D BBF9 9625 5ABC  285C 26A9 687E 7CBF 764A -
(gnupg fingerprint: 3061 CFBF 2D88 F034 E8D2  7E92 EE4E AC98 48D0 359B)-
Hello,

to ease testing and configuration: what about having a
(Continue reading)

Heiko Schlittermann | 17 Nov 13:23 2014
Picon

RFC: private vs. generic options in routers and transports

Hello,

when giving lessons about Exim it's always not easy to differentiate
between the generic and the private options in the driver instance
configuration blocks.

Let me demonstrate this using the modified default config

    begin routers

        dnslookup:
            driver  = dnslookup
            check_srv = yes
            domains = !+local_domains
            transport = remote_smtp
            ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
            no_more

Nobody can tell on the first sight, which of these options is a generic
router option and which one is private to dnslookup. "check_srv" -
generic or private. (Of course, if you're familiar with DNS and with
Exim you can tell, but not everybody is…)

One aproach could be to re-order the options, putting the generic
options first, then the driver and then the private options.

But it doesn't help a lot, since it somehow obfuscates the
information flow (ignore_target_hosts is evaluated when the driver *did*
its job):

(Continue reading)

Jeremy Harris | 15 Nov 16:46 2014

[Bug 1545] New: Want domain-based retry rules

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1545
           Summary: Want domain-based retry rules
           Product: Exim
           Version: 4.84
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: wishlist
          Priority: medium
         Component: Delivery in general
        AssignedTo: nigel <at> exim.org
        ReportedBy: jgh146exb <at> wizmail.org
                CC: exim-dev <at> exim.org

The retry entries stored currently are per-destination IP.  This fails when
faced with gmail, which shows a large number (5) of MXs, most of which have
both
A and AAAA records, with small (300) TTL... and rotates the IPs it returns for
A-lookups.

The result is a delivery attempt on every queue-run, whatever the retry rule
places in the db entry for "next try at".

Possibly a marker on the db entry destination IP for "any" would do as an
implementation.  For the rule syntax, we could expand the third "senders"
entry to be a list of constraints and accept "hosts=*" as well as the current
"senders=<host list>"
(Continue reading)

Konstantin | 13 Nov 17:14 2014
Picon

[Bug 1543] New: wrong position for new header when used add_header

------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1543
           Summary: wrong position for new header when used add_header
           Product: Exim
           Version: 4.82.1
          Platform: x86-64
        OS/Version: Linux
            Status: NEW
          Severity: bug
          Priority: low
         Component: ACLs
        AssignedTo: jgh146exb <at> wizmail.org
        ReportedBy: myownletters <at> gmail.com
                CC: exim-dev <at> exim.org

When i try to add a new Cc field i found that action for “:at_start:” and
“:after_received:” is the same. 
The Cc header added at the beginning of the message. 

Exim.conf part:

acl_check_rcpt:
 warn  set acl_m10envrcpt =$local_part <at> $domain

acl_check_data:
  warn log_message = Add header Cc
    condition = ${if eq {$acl_m1}{1}}
    add_header = :after_received:Cc: $acl_m10envrcpt
(Continue reading)

Jeremy Harris | 14 Nov 12:50 2014

[Bug 209] Make interfaces available in a variable

------- You are receiving this mail because: -------
You are the QA contact for the bug.

http://bugs.exim.org/show_bug.cgi?id=209

Nigel Metheringham <nigel <at> exim.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Target Milestone|Exim 4.73                   |Exim 4.77

Jeremy Harris <jgh146exb <at> wizmail.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jgh146exb <at> wizmail.org
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX

--- Comment #3 from Jeremy Harris <jgh146exb <at> wizmail.org>  2014-11-14 11:50:22 ---
Nobody did

--

-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email


Gmane