17:39 Mikael Urankar (mikael)  Author: Dan Mahoney

mail/opendmarc: Update to 1.4.2

 - Update to 1.4.2
 - Change master site to github
 - Resolve CVE-2021-34555 and many other CVEs

PR:	260594

    9d3c1f8

14:45 pi 

mail/opendmarc: update 1.3.1 -> 1.3.2

Feature request #86: Change meaning of "RequiredHeaders" such that
	header validity is always checked, but messages are only
	rejected on that basis when the flag is set.  Based
	on a patch from Andreas Schulze.
Feature request #127: Log SPF results when rejecting.  Requested
	by Patrick Wagner; patch from Andreas Schulze, follow-up
	patch from Juri Haberland.
Feature request #138: Inculde policy and disposition information
	in an Authentication-Results comment.  Based on a patch
	from Juri Haberland.
Feature request #139: Include the client host name if known
	in failure reports.  Suggested by Roland Turner;
	patch by Andreas Schulze.
Fix bug #95: Assume IPv6 for SPF operations.  Patch from Juri Haberland.
Fix bug #120: Fix control logic around the SPF result.
	Reported by Christophe Wolfhugel; patch from Andreas Schulze.
Fix bug #122: Don't skip the HELO milter phase when SPF is enabled.
	Reported by Christophe Wolfhugel.
Fix bug #157: Fix logging of implicit authserv-ids.  Reported
	by Andreas Schulze; patch from Juri Haberland.
Fix bug #158: Log ignored connections.  Patch from Andreas Schulze.
Fix bug #160: Fix "SyslogFacility" handling.  Patch from
	Juri Haberland.
Fix bug #163: Use a larger buffer for the raw MAIL FROM value.
	Based on a patch from Andreas Schulze.
Fix bug #174: Trim "!" suffixes from reporting addresses.  Problem
	noted by Juri Haberland.
Fix bug #186: When reloading the configuration file, the public
	suffix list was read in with the wrong comment indicator.
	Patch from Federico Omoto.
LIBOPENDMARC: Fix bug #115: Fix type mismatch.  Patch from
	Sebastian A. Siewior via Scott Kitterman.
LIBOPENDMARC: Fix bug #121: Fix IPv6 CIDR matching in SPF code.
	Patch from Christophe Wolfhugel.
LIBOPENDMARC: Fix bug #125: Compile time IPv6 fix.  Reported by
	Christophe Wolfhugel.
LIBOPENDMARC: Fix bug #131: Fix alignment bug.  Patch from
	Andreas Schulze.
LIBOPENDMARC: Fix bug #147: Fix stripping of whitespace from
	DMARC DNS records.  Based on a patch from Job Noorman.
LIBOPENDMARC: Fix bug #149: Apply "sp" setting, if present and
	applicable.  Patch from Petr Novak.
LIBOPENDMARC: Fix bug #154: Fix "rf" and "fo" processing logic.
LIBOPENDMARC: Fix bug #156: Fix variable name.  Patch by
	Andreas Schulze.
LIBOPENDMARC: Fix bug #165: Fix logic in checking which SPF
	identifier was used.  Patches from Marco Favero and
	Juri Haberland.
LIBOPENDMARC: Fix bug #167: Don't return "fail" when we should
	return "none".  Patch from Marco Favero.
REPORTS: Fix bug #134: Handle SMTP errors correctly.  Patch from
	Andreas Schulze.
REPORTS: Fix bug #141: Set the HELO parameter correctly.
	Reported by Alan Smith; patch from Andreas Schulze.
REPORTS: Fix bug #143: Fix logic in table truncation.
	Reported by Wayne Andersen; patch from Juri Haberland.
REPORTS: Fix bug #162: Always report "sp" in aggregate reports.
	Patch from Juri Haberland.
REPORTS: Fix bug #166: Fix report start/end time logic.
	Patch from Juri Haberland.
REPORTS: Fix bug #188: Don't delete inputs too early in
	opendmarc-reports.  Patch from Juri Haberland.
TOOLS: Fix bug #161: "Forensic" reports were renamed "Failure"
	reports.  Patch from Andreas Schulze.
TOOLS: Fix bug #164: Handle IPv6 test addresses.  Reported by
	Andreas Schulze; patch from Juri Haberland.
DOCS: Patch #189: Replace the DMARC RFC with an HTML page
	referencing the relevant specs, since Debian doesn't
	consider RFCs to be "free".  Patch from Scott Kitterman
	via Juri Haberland.

PR:		220902
Submitted by:	Dan Mahoney <freebsd@gushi.org> (maintainer), Lukasz Wasikowski
<lukasz@wasikowski.net>

 

12:18 erwin 

Update to version 1.3.1, Maintainer change to Dan Mahoney <danm@prime.gushi.org>

This is mainly a bug fix release, but it does contain one important new
feature.  Upgrade is recommended.

The full RELEASE_NOTES for this version, showing changes since the last
release:

1.3.1           2015/02/23
        Fix bug #97: Add ability to change envelope sender, client IP
                address, client hostname, and HELO value used in test
                mode, via environment variables.  This can be turned
                into something more formal in a later release.  Suggested
                by Andreas Schulze.
        Fix bug #102: Don't lose SPF results and output the "-1" default.
                Reported by Kurt Roeckx.
        Fix bug #103: Fix IgnoreAuthenticatedClients by requesting the
                right macro value from the MTA.
        Fix bug #113: Remove "TemporaryDirectory" (unused).  Patch from
                Andreas Schulze.
        LIBOPENDMARC: Fix bug #104: Include <sys/param.h> and <resolv.h>
                in <opendmarc/dmarc.h> so that MAXPATHLEN and MAXNS get
                defined consistently.  Reported by Frank J. Lhota.
        LIBOPENDMARC: Fix bug #105: Get the h_errno definition from
                <netdb.h> rather than declaring it.  Problem noted
                by Frank J. Lhota.
        LIBOPENDMARC: Fix bug #106: Clean up issues with the types passed
                to opendmarc_policy_library_dns_hook().  Noted by
                Frank J. Lhota.
        DOCS: Fix bug #99: Update list of constraints on
                opendmarc_policy_fetch_alignment().  Reported by
                Frank J. Lhota.
        REPORTS: Fix bug #108: Handle malformed mailto URIs in DMARC
                records (e.g., just "mailto:").  Reported by Andreas Schulze.
        REPORTS: Fix bug #110: Support SQL backend selection in
                opendmarc-expire.  Reported by Mark Reidenbach.

PR:		198502
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)

 

17:43 pi 

mail/opendmarc: 1.2.0 -> 1.3.0

1.3.0		2014/07/31
	Integrated SPF checking is now available through the new
		SPFSelfValidate and SPFIgnoreResults settings.
	Feature request #79: Optionally ignore clients that authenticated
		using SMTP AUTH.
	Fix bug #60, part II: Default AuthservID to the name provided by the
		MTA, not the local host name, which is consistent with what
		OpenDKIM does.  Suggested by Robbert Klarenbeek.
	Fix bug #72: Don't crash when From fields are absent.  Patch from
		Andreas Schulze.
	Fix bug #74: Change "Forensic" to "Failure" just about everywhere
		to match the language now being used in the base DMARC
		draft.  Note that this also changes some names in the
		configuration file.
	Fix bug #75: Correct typo in MIME of forensic reports.  Reported by
		Julian Mehnle.
	Fix bug #76: Repair damage with respect to Authentication-Results
		header field selection.  Reported by Todd Lyons.
	Fix bug #77: Request quarantine from the MTA during option
		negotiation.  Reported by Richard Platel.
	Fix bug #78: Add missing newline in forensic report header.
	Fix bug #90: Make "--with-sql-backend" without any value do the
		right thing.  Reported by Scott Kitterman.
	Fix bug #93: Honor size limits in URIs.  Patch from Tomki Camp.
	Make "smime" and "rrvs" legal Authentication-Results methods.
	Provide better logging when pclose() for a forensic report returns
		non-zero.  Problem noted by Michael Nausch.
	Add configuration support for internal SPF checks.  Includes hooks in
		the milter to check that SPF is configured to do so.
		This can use a private SPF implementation or libspf2.
	Fix strlcat() and strlcpy() support for Debian.  Patch from Scott
		Kitterman.
	REPORTS: Feature request #80: Generate aggregate reports on UTC
		day boundaries.  Requested by Tomki Camp.
	REPORTS: Feature request #84: Optionally expire old data from
		lower-growth tables.  Requested by Christoph Steindl.
	REPORTS: Fix bug #70: Fix date range generation in reports.  Patch
		from Karol Augustin.
	REPORTS: Fix bug #82: Fix recording of report timestamp to avoid lost
		records.  Reported by Christoph Steindl.
	REPORTS: Fix bug #83: When expiring data, truncate the signatures table
		if all messages were expired.  Reported by Christoph Steindl.
	REPORTS: Fix bug #85: Report subdomain policy.  Patch from
		Christoph Steindl.
	LIBOPENDMARC: Fix bug #71: Fix "rua" extraction from DMARC records
		Problem noted by Karol Augustin.
	LIBOPENDMARC: Added support for milter to perform own spf checks.
		Three new files: opendmarc_spf.c, opendmard_spf_dns.c and
		test/test_spf.cl, allow integrated SPF support.  Support for
		use of libspf2 is also provided.

PR:		192311
Submitted by:	jaap@NLnetLabs.nl (maintainer)

 

10:59 pawel 

- Update to version 1.2.0, support staging [1]
- More precise LICENSE
- Fix shebangs in perl scripts
- Strip library

PR:		ports/187608 [1]
Submitted by:	maintainer

 

19:55 lippe 

OpenDMARC is an open source implementation of Domain-based Message
Authentication, Reporting & Conformance, or DMARC. It builds on the
successes of technologies such as DomainKeys Identified Mail (DKIM)
and the Sender Policy Framework (SPF) to create an infrastructure
that enforces policy on domain names that are visible to end users,
and creates a feedback framework for identifying and tracking
fraudulent use of domain names in email.

It includes a library for handling DMARC record parsing,
a database schema and tools for aggregating and processing transaction
history to produce DMARC reports, and a filter that ties it all together
with an MTA using the milter protocol.

WWW: http://www.trusteddomain.org/opendmarc.html

PR:		ports/177486
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl>