notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)

Hardware failure

The website is running on the old server. The new server stopped working at about 0200 UTC on 2020-08-22. The database was restored from 2020-08-21 00:59:15+00 UTC. We think we have covered all commits. Nothing should be missing. Any changes you made to your accounts after the restore date will be lost. Sorry about that.
Port details
opensmtpd Security- and simplicity-focused SMTP server from OpenBSD
6.7.1,1 mail on this many watch lists=9 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. 6.7.1,1Version of this port present on the latest quarterly branch.
Maintainer: fluffy@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2012-05-14 13:13:11
Last Update: 2020-05-22 04:55:47
SVN Revision: 536184

People watching this port, also watch: poudriere, rspamd, tmux, openntpd, nginx

License: ISCL
Description:
SVNWeb : Homepage
pkg-plist: as obtained via: make generate-plist
Expand this list (25 items)
Collapse this list.
  1. /usr/local/share/licenses/opensmtpd-6.7.1,1/catalog.mk
  2. /usr/local/share/licenses/opensmtpd-6.7.1,1/LICENSE
  3. /usr/local/share/licenses/opensmtpd-6.7.1,1/ISCL
  4. @sample etc/mail/smtpd.conf.sample
  5. bin/smtp
  6. libexec/opensmtpd/encrypt
  7. libexec/opensmtpd/lockspool
  8. libexec/opensmtpd/mail.lmtp
  9. libexec/opensmtpd/mail.local
  10. libexec/opensmtpd/mail.maildir
  11. libexec/opensmtpd/mail.mboxfile
  12. libexec/opensmtpd/mail.mda
  13. libexec/opensmtpd/makemap
  14. @(,_smtpq,2555) sbin/smtpctl
  15. sbin/smtpd
  16. man/man1/smtp.1.gz
  17. man/man5/aliases.5.gz
  18. man/man5/forward.5.gz
  19. man/man5/smtpd.conf.5.gz
  20. man/man5/table.5.gz
  21. man/man8/makemap.8.gz
  22. man/man8/newaliases.8.gz
  23. man/man8/sendmail.8.gz
  24. man/man8/smtpctl.8.gz
  25. man/man8/smtpd.8.gz
Collapse this list.
Dependency lines:
  • opensmtpd>0:mail/opensmtpd
Conflicts:
CONFLICTS_INSTALL:
  • postfix-[0-9]*
  • sendmail-[0-9]*
  • opensmtpd-devel-[0-9]*
Conflicts Matches:
There are no Conflicts Matches for this port. This is usually an error.
To install the port: cd /usr/ports/mail/opensmtpd/ && make install clean
To add the package: pkg install opensmtpd
PKGNAME: opensmtpd
Flavors: there is no flavor information for this port.
distinfo:
Packages: (move your mouse over the cells for more information)
opensmtpd
ABIlatestquarterly
FreeBSD:11:aarch645.9.2p1_6,1-
FreeBSD:11:amd64--
FreeBSD:11:armv65.9.2p1_1,1-
FreeBSD:11:i386--
FreeBSD:11:mips5.9.2p1_1,1-
FreeBSD:11:mips645.9.2p1_1,1-
FreeBSD:12:aarch645.9.2p1_6,16.7.1,1
FreeBSD:12:amd646.7.1,16.7.1,1
FreeBSD:12:armv65.9.2p1_6,16.7.1,1
FreeBSD:12:armv7-6.7.1,1
FreeBSD:12:i3866.7.1,16.7.1,1
FreeBSD:12:mips--
FreeBSD:12:mips64--
FreeBSD:12:powerpc64-6.7.1,1
FreeBSD:13:aarch646.7.1,1-
FreeBSD:13:amd646.7.1,1-
FreeBSD:13:armv6--
FreeBSD:13:armv76.6.4_1,1-
FreeBSD:13:i3866.7.1,1-
FreeBSD:13:mips--
FreeBSD:13:mips64--
FreeBSD:13:powerpc646.7.1,1-
 

Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. bison : devel/bison
  2. groff : textproc/groff
Runtime dependencies:
  1. ca-root-nss.crt : security/ca_root_nss
Library dependencies:
  1. libevent.so : devel/libevent
  2. libasr.so : dns/libasr
This port is required by:
for Build
  1. mail/opensmtpd-extras
  2. mail/opensmtpd-extras-queue-ram
  3. mail/opensmtpd-extras-scheduler-ram
  4. mail/opensmtpd-extras-table-ldap
  5. mail/opensmtpd-extras-table-mysql
  6. mail/opensmtpd-extras-table-passwd
  7. mail/opensmtpd-extras-table-postgresql
Expand this list (24 items / 17 hidden)
  1. Collapse this list.
  2. mail/opensmtpd-extras-table-python
  3. mail/opensmtpd-extras-table-redis
  4. mail/opensmtpd-extras-table-socketmap
  5. mail/opensmtpd-extras-table-sqlite
  6. Collapse this list.

Deleted ports which required this port:

Expand this list of 13 deleted ports
  1. mail/opensmtpd-extras-filter-clamav*
  2. mail/opensmtpd-extras-filter-dkim*
  3. mail/opensmtpd-extras-filter-dnsbl*
  4. mail/opensmtpd-extras-filter-lua*
  5. mail/opensmtpd-extras-filter-monkey*
  6. mail/opensmtpd-extras-filter-pause*
  7. mail/opensmtpd-extras-filter-perl*
  8. mail/opensmtpd-extras-filter-python*
  9. mail/opensmtpd-extras-filter-regex*
  10. mail/opensmtpd-extras-filter-spamassassin*
  11. mail/opensmtpd-extras-queue-python*
  12. mail/opensmtpd-extras-scheduler-python*
  13. mail/opensmtpd-extras-tool-stats*
  14. Collapse this list of deleted ports.
for Run
  1. mail/opensmtpd-extras
  2. mail/opensmtpd-extras-queue-ram
  3. mail/opensmtpd-extras-scheduler-ram
  4. mail/opensmtpd-extras-table-ldap
  5. mail/opensmtpd-extras-table-mysql
  6. mail/opensmtpd-extras-table-passwd
  7. mail/opensmtpd-extras-table-postgresql
Expand this list (26 items / 19 hidden)
  1. Collapse this list.
  2. mail/opensmtpd-extras-table-python
  3. mail/opensmtpd-extras-table-redis
  4. mail/opensmtpd-extras-table-socketmap
  5. mail/opensmtpd-extras-table-sqlite
  6. mail/opensmtpd-filter-rspamd
  7. mail/opensmtpd-filter-senderscore
  8. Collapse this list.

Deleted ports which required this port:

Expand this list of 13 deleted ports
  1. mail/opensmtpd-extras-filter-clamav*
  2. mail/opensmtpd-extras-filter-dkim*
  3. mail/opensmtpd-extras-filter-dnsbl*
  4. mail/opensmtpd-extras-filter-lua*
  5. mail/opensmtpd-extras-filter-monkey*
  6. mail/opensmtpd-extras-filter-pause*
  7. mail/opensmtpd-extras-filter-perl*
  8. mail/opensmtpd-extras-filter-python*
  9. mail/opensmtpd-extras-filter-regex*
  10. mail/opensmtpd-extras-filter-spamassassin*
  11. mail/opensmtpd-extras-queue-python*
  12. mail/opensmtpd-extras-scheduler-python*
  13. mail/opensmtpd-extras-tool-stats*
  14. Collapse this list of deleted ports.
* - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

Configuration Options

USES:

Master Sites:
Expand this list (1 items)
    Collapse this list.
  1. http://www.opensmtpd.org/archives/
  2. Collapse this list.
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2016-05-26
    Affects: users of mail/opensmtpd
    Author: brnrd@FreeBSD.org
    Reason: 
      Due to changes to the rc-script you must stop smtpd prior to upgrading
      mail/opensmtpd to version 5.9.2
    
      # service smtpd stop
    
      Then upgrade OpenSMTPD to version 5.9.2.
      Additionally version 5.9.2 changes the file mode bits for two directories.
      To allow existing installations to start successfully you must apply the
      following changes
    
      # chown -R root:_smtpq /var/spool/smtpd/offline
      # chmod -R 770 /var/spool/smtpd/offline
      # chmod -R 700 /var/spool/smtpd/purge
    
      After applying the changes, the smtpd daemon can successfully be started.
    
    
  • Expand this list ( items)Collapse this list.


  • 2015-08-02
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      After upgrading, you will need to review all your configuration, as
      there are some configuration changes between 5.4.x and 5.7.1.
    
    
  • 2015-04-27
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      Following OPTIONS are being removed in 5.4.5p1:
    
      - LDAP
      - SQLITE
      - MYSQL
      - PGSQL
      - REDIS
    
      They are disabled/removed in upstream since 5.4.4p1, but did not get removed
      from port.
    
    
  • 2013-12-07
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      There has been changes to the OpenSMTPD configuration. Please refer to
      smtpd.conf(5), and use "smtpd -nf smtpd.conf" to validate.
    
    
  • 2013-03-27
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      Privilege separation is enabled in OpenSMTPD port from 5.3,1. Users
      upgrading from version 201303011853 or earlier are required to follow
      the instructions in pkg-message to fix the filesystem permissions on
      OpenSMTPD spool directories.
    
    
  • 2013-01-21
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      Please flush your mail queue before updating to version 201301191220.
    
    
  • 2013-01-02
    Affects: users of mail/opensmtpd
    Author: ashish@FreeBSD.org
    Reason: 
      OpenSMTPD port has been updated to the latest portable snapshot. There
      has been several changes to the configuration between the last version
      and this version, which requires configuration file need to be reviewed.
    
    
  • Collapse this list.

Number of commits found: 88

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
22 May 2020 03:55:47
Original commit files touched by this commit  6.7.1,1
Revision:536184
fluffy search for other commits by this committer
mail/opensmtpd: update to 6.7.1p1 portable release

- fixes a packaging issue causing asr.h to be installed in target system
- fixes a possible crash in the MTA when establishing IPv6 connections
19 May 2020 16:14:25
Original commit files touched by this commit  6.7.0,1
Revision:535867
fluffy search for other commits by this committer
mail/opensmtpd: update to 6.7.0p1 portable release

Changes in this release:
========================

New Features:

- Allowed use of the smtpd(8) session username in built-in filters when
available.
- Introduced a bypass keyword to smtpd(8) so that built-in filters can bypass
processing when a condition is met.
- Allowed use of 'auth' as an origin in smtpd.conf(5).
- Allowed use of mail-from and rctp-to as for and from parameters in
smtpd.conf(5).

Bug fixes:

- Ensured legacy ssl(8) session ID is persistent during a client TLS session,
fixing an issue using TLSv1.3 with smtp.mail.yahoo.com.
- Fixed security vulnerabilities in smtpd(8). Corrected an out-of-bounds read in
smtpd allowing an attacker to inject arbitrary commands into the envelope file
to be executed as root, and ensured privilege revocation in smtpctl(8) to
prevent arbitrary commands from being run with the _smtpq group.
- Allowed mail.local(8) to be run as non-root, opening a pipe to lockspool(1)
for file locking.
- Fixed a security vulnerability in smtpd(8) which could lead to a privilege
escalation on mbox deliveries and unprivileged code execution on lmtp
deliveries.
- Added support for CIDR in a: spf atoms in smtpd(8).
- Fixed a possible crash in smtpd(8) when combining "from rdns" with nested
virtual aliases under a particular configuration.
31 Mar 2020 17:48:10
Original commit files touched by this commit  6.6.4_1,1
Revision:529998 This port version is marked as vulnerable.
fluffy search for other commits by this committer
Fix missed '\' at line end

Pointyhat to: fluffy
31 Mar 2020 17:44:15
Refresh Original commit files touched by this commit
Revision:529996  Sanity Test Failure
fluffy search for other commits by this committer
mail/opensmtpd: We not need to care about OpenBSD here

Make configure args for mbox path unconditional

Noted by:	mat
26 Mar 2020 08:55:42
Original commit files touched by this commit  6.6.4_1,1
Revision:529169 This port version is marked as vulnerable.
fluffy search for other commits by this committer
mail/opensmtpd: honor hier(1) for mbox homedir

By default, OpenSMTPd rely on OpenBSD defaults, /var/spool/mail, instead of
/var/mail
Point it on /var/mail on all supported platforms != OpenBSD

Reported by:	Denis Fortin via private mail
MFH:		2020Q1
24 Feb 2020 18:36:49
Original commit files touched by this commit  6.6.4,1
Revision:527012 This port version is marked as vulnerable.
fluffy search for other commits by this committer
mail/opensmtpd: update to 6.6.4p1 security releaase

SECURITY RELEASE

An out of bounds read in smtpd allows an attacker to inject arbitrary commands
into the envelope file which are then executed as root. Separately, missing
privilege revocation in smtpctl allows arbitrary commands to be run with the
_smtpq group.

MFH:		2020Q1
11 Feb 2020 15:32:35
Original commit files touched by this commit  6.6.3,1
Revision:525833 This port version is marked as vulnerable.
fluffy search for other commits by this committer
mail/opensmtpd: update to 6.6.3p1 release

- switch default configuration to maildir
- allow mbox to deliver to users without requiring privileges in the daemon
- allow lmtp to receive sender/recipient in environment

MFH:		2020Q1
29 Jan 2020 02:55:05
Original commit files touched by this commit  6.6.2,1
Revision:524529 This port version is marked as vulnerable.
fluffy search for other commits by this committer
mil/opensmtpd: update to 6.6.2p1 relase

This update addressed LPE and RCE vulnerabilities in OpenSMTPD (CVE-2020-7247)
https://www.openwall.com/lists/oss-security/2020/01/28/3

This vulnerability is exploitable since May 2018 (commit a8e222352f, "switch
smtpd to new grammar") and allows an attacker to execute arbitrary shell
commands, as root:

- either locally, in OpenSMTPD's default configuration (which listens on
  the loopback interface and only accepts mail from localhost);

- or locally and remotely, in OpenSMTPD's "uncommented" default
  configuration (which listens on all interfaces and accepts external
  mail).

PR:		243686
Reported by:	authors via irc
MFH:		2020Q1
Relnotes:	misc@opensmtpd.org/msg04850.html" REL="NOFOLLOW">https://www.mail-archive.com/misc@opensmtpd.org/msg04850.html
01 Jan 2020 17:27:55
Original commit files touched by this commit  6.6.1,1
Revision:521748 This port version is marked as vulnerable.
brnrd search for other commits by this committer
Chase rename of security/openssl111

 - Categories a-m

MFH:		2020Q1
06 Nov 2019 12:59:36
Original commit files touched by this commit  6.6.1,1
Revision:516882 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Update OpenSMTPd to 6.6.1p1 portable release
26 Oct 2019 16:24:47
Original commit files touched by this commit  6.6.0,1
Revision:515714 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Update OpenSMTPd to 6.6.0 portable release
    This release builds with LibreSSL > 3.0.2 or OpenSSL > 1.1.0.
    FreeBSD 11.x users should update to 12.x/13.x or switch system-wide
    default ssl library to openssl111/libressl

- Update -extras to 6.4.0 release
    Filters still missing, corresponded ports temporary markes
    as IGNORED

PR:		213442,228937
MFH:		2019Q4
13 Aug 2019 22:29:43
Original commit files touched by this commit  5.9.2p1_7,1
Revision:508882 This port version is marked as vulnerable.
mat search for other commits by this committer
onvert to UCL & cleanup pkg-message (categories l-m)
02 Aug 2019 13:30:40
Original commit files touched by this commit  5.9.2p1_7,1
Revision:507877 This port version is marked as vulnerable.
jbeich search for other commits by this committer
devel/libevent2: update to 2.1.11

Changes:	https://github.com/libevent/libevent/releases/tag/release-2.1.11-stable
ABI:		https://abi-laboratory.pro/tracker/timeline/libevent/
PR:		239599
Reported by:	GitHub (watch releases)
Approved by:	zeising (maintainer)
MFH:		2019Q3 (maybe security, partially restores 2.1.8 ABI)
Differential Revision:	https://reviews.freebsd.org/D21133
22 Dec 2018 03:21:16
Original commit files touched by this commit  5.9.2p1_6,1
Revision:488057 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Unbreak on 12+ with SSL_DEFAULT=libressl[-devel]

Submitted by:	gahr
05 Nov 2018 23:28:55
Original commit files touched by this commit  5.9.2p1_6,1
Revision:484257 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- While major 6.4 update still cooking (authors dropped openssl support at all
  in favor of libressl), mark OpenSMTPd as BROKEN with openssl 1.1.x api
- Use https in pkg-descr url

MFH:		2018Q4
21 Oct 2018 09:30:16
Original commit files touched by this commit  5.9.2p1_6,1
Revision:482657 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Update WWW

Approved by:	portmgr blanket
03 May 2018 23:17:24
Original commit files touched by this commit  5.9.2p1_6,1
Revision:468996 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Prevent OpenSMTPD session hangs and retain a descriptor forever on empty body
    (i.e. when the dot appears on the line directly after the headers).
    This could be used by an attacker to exhaust resources.

PR:		227899
Submitted by:	grembo
Obtained from:	OpenSMTPD git repo (backported)
MFH:		2018Q2
26 Apr 2018 00:53:01
Original commit files touched by this commit  5.9.2p1_5,1
Revision:468319 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Pet MDA part, add brackets around Return-Path as per RFC5322 SS3.6.6.

Missing brackets lead to a panic when a malformed address line
is fed to dovecot-lda

Submitted by:	gahr
Reported by:	brnrd via dovecot ML
Obtained
from:	https://github.com/OpenSMTPD/OpenSMTPD/pull/847/commits/725ba4fa2ddf23bbcd1ff9ec92e86bbfaa6825c8
11 Jan 2018 13:16:40
Original commit files touched by this commit  5.9.2p1_4,1
Revision:458728 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Drop OPENSSL_PORT redefine, it was used for OSVERSION<103000 [1];
  follow system-wide DEFAULT_VERSIONS+= ssl=<openssl variant>
- Sort plist
- @sample config

PR:		225067 [1]
Reported by:	Charlie Li [1]
28 May 2017 10:58:00
Original commit files touched by this commit  5.9.2p1_3,1
Revision:441907 This port version is marked as vulnerable.
antoine search for other commits by this committer
Register dependency on groff

PR:		213725
20 Feb 2017 02:57:04
Original commit files touched by this commit  5.9.2p1_3,1
Revision:434427 This port version is marked as vulnerable.
jbeich search for other commits by this committer
devel/libevent2: drop historical suffix after r362796

PR:		216777
Approved by:	mm (maintainer)
04 Feb 2017 07:56:59
Original commit files touched by this commit  5.9.2p1_2,1
Revision:433286 This port version is marked as vulnerable.
jbeich search for other commits by this committer
devel/libevent2: update to 2.1.8 and cleanup

- DEFAULT_VERSIONS += ssl=openssl-devel is now supported
- devel/py-event and devel/p5-Event-Lib are marked BROKEN

Changes:	https://github.com/libevent/libevent/raw/release-2.1.8-stable/whatsnew-2.1.txt
Changes:	https://github.com/libevent/libevent/raw/release-2.1.8-stable/ChangeLog
PR:		216527
Exp-run by:	antoine
Approved by:	mm (maintainer)
11 Jan 2017 10:08:38
Original commit files touched by this commit  5.9.2p1_1,1
Revision:431169 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Remove always-true/false conditions after FreeBSD 9, 10.1, 10.2 EOL

Approved by:	portmgr blanket
07 Dec 2016 15:34:35
Original commit files touched by this commit  5.9.2p1_1,1
Revision:428066 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Get rid of USE_OPENSSL, switch to USES= ssl
17 Oct 2016 10:38:05
Original commit files touched by this commit  5.9.2p1_1,1
Revision:424103 This port version is marked as vulnerable.
ashish search for other commits by this committer
Assign ports to fluffy@, who is actively tracking OpenSMTPD
development, and has kindly agreed to take the maintainership
of following ports:

  - dns/libasr
  - dns/libasr-devel
  - mail/opensmtpd
  - mail/opensmtpd-devel

Thank you!
27 May 2016 07:02:55
Original commit files touched by this commit  5.9.2p1_1,1
Revision:415927 This port version is marked as vulnerable.
fluffy search for other commits by this committer
- Allow custom config file in rc script for both stable/devel ports
- While here, create makemap symlink only with TABLE_DB enabled

Reported by:	myself (for adamw)
Reviewed by:	adamw
Approved by:	miwi (mentor, implicit)
26 May 2016 12:56:35
Original commit files touched by this commit  5.9.2p1,1
Revision:415890 This port version is marked as vulnerable.
brnrd search for other commits by this committer
mail/opensmtpd: Fix SSL and CA problems

  - Change with-ssl to with-ssllib
  - Change with-ca-file to with-path-CAfile
  - Remove broken for libasr-devel

PR:		208991
Submitted by:	fluffy
Approved by:	maintainer (implicit)
26 May 2016 07:15:17
Original commit files touched by this commit  5.9.2p1,1
Revision:415877 This port version is marked as vulnerable.
brnrd search for other commits by this committer
mail/opensmtpd: Update to 5.9.2

  - Update to 5.9.2p1
  - Remove usernamelen patch (default 255+1)
  - Fix renamed configure args
  - Add symlink for makemap (now included in smtpctl)
  - Align versioning with other OpenBSD projects
  - Add _smtpq group
  - Add UPDATING entry for existing installs
  - Update pkg-message for existing installs

Reviewed by:	adamw, mat
Approved by:	adamw, maintainer (implicit)
Differential Revision: D6421
19 May 2016 11:09:14
Original commit files touched by this commit  5.7.3_2,1
Revision:415503 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-messages

Approved by:	portmgr blanket
01 Apr 2016 14:16:20
Original commit files touched by this commit  5.7.3_2,1
Revision:412348 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories m, n, o, and p.

With hat:	portmgr
Sponsored by:	Absolight
25 Feb 2016 14:19:16
Original commit files touched by this commit  5.7.3_2,1
Revision:409520 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add SSL_PORT option to specify if OpenSSL from ports is to be used[1]
- Make option descriptions generic[1]
- Cleanup OPTIONS[1]
- Enforce SSL_PORT for 9.x[1]
- Mark as broken with LIBASRDEVEL option, due to incompatibility

PR:		206523[1]
Submitted by:	Andrey Fesenko <andrey at bsdnir dot info>[1]
02 Feb 2016 20:45:04
Original commit files touched by this commit  5.7.3_1,1
Revision:407847 This port version is marked as vulnerable.
gahr search for other commits by this committer
mail/opensmtpd: restore patch to install .sample config file

Notified by:	adamw@
MFH:			2016Q1
02 Feb 2016 15:36:11
Original commit files touched by this commit  5.7.3_1,1
Revision:407825 This port version is marked as vulnerable.
gahr search for other commits by this committer
mail/opensmtpd: update to 5.7.3p2

Details at https://github.com/OpenSMTPD/OpenSMTPD/issues/650

While at it, remove a stale patch that isn't applicable anymore. Upstream
implements this logic already, and the patch doesn't actually patch anything.

PR:				206816
Submitted by:	sa.inbox@gmail.com
Approved by:	portmgr@
06 Oct 2015 03:20:23
Refresh Original commit files touched by this commit
Revision:398679
junovitch search for other commits by this committer
mail/opensmtpd: update 5.7.1 -> 5.7.3

Changes:	https://www.opensmtpd.org/announces/release-5.7.2.txt
Changes:	https://www.opensmtpd.org/announces/release-5.7.3.txt

Approved by:	ashish (maintainer, implicit from AFK notice)
Security:	42852f72-6bd3-11e5-9909-002590263bf5
Security:	ee7bdf7f-11bb-4eea-b054-c692ab848c20
Security:	CVE-2015-7687
MFH:		2015Q4
16 Sep 2015 13:03:46
Original commit files touched by this commit  5.7.1_2,1
Revision:397064 This port version is marked as vulnerable.
mat search for other commits by this committer
It seems some people keep adding $FreeBSD$ to patch files.

Patches must not be changed by the vcs, this includes the
svn:keyword expansion.  Set fbsd:nokeywords to a couple of patches.

With hat:	portmgr
Sponsored by:	Absolight
16 Aug 2015 23:25:19
Original commit files touched by this commit  5.7.1_2,1
Revision:394432 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Fix typos in the patch committed in r394424

Reported by:	adamw
16 Aug 2015 21:54:16
Original commit files touched by this commit  5.7.1_1,1
Revision:394424 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add a patch to handle long usernames during SMTP authentication,
  e.g. often username exceeds the limit when it contains @host.name
  part.

Reported by:	gahr (via private email)
Obtained from:	Philipp Takacs <philipp@bureaucracy.de> (via IRC)
15 Jul 2015 15:53:21
Original commit files touched by this commit  5.7.1,1
Revision:392161 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.7.1p1
- Add TABLE_DB option to add support for aliases db
- Sort options in alphabetical order

PR:		201241
Submitted by:	brnrd
15 Jun 2015 02:12:32
Original commit files touched by this commit  5.4.6,1
Revision:389664 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.4.6

Changes:		http://article.gmane.org/gmane.mail.opensmtpd.general/2759
27 Apr 2015 02:42:23
Original commit files touched by this commit  5.4.5,1
Revision:384809 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.4.5p1
- Remove OPTIONS for the features unsupported upstream: SQLITE, MYSQL,
  LDAP, PGSQL, and REDIS
- Add workaround to prevent unnecessary dependency on autotools, due
  to problem with tarball
- Add note to UPDATING about the removal of OPTIONS
17 Apr 2015 11:47:53
Original commit files touched by this commit  5.4.4_1,1
Revision:384154 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add LICENSE_FILE
- Add CPE info

Approved by:	portmgr blanket
29 Mar 2015 05:17:44
Original commit files touched by this commit  5.4.4_1,1
Revision:382567 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add OPTION to only update mailer.conf(5) on demand
- Update COMMENT so it complies with guidelines in Porter's
  Handbook

PR:		198375
Submitted by:	adamw
13 Feb 2015 11:52:23
Original commit files touched by this commit  5.4.4_1,1
Revision:378922 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update rc.d script to add a configtest command to test configuration
  before starting/restarting service.

PR:		197587
Submitted by:	elbarto at megadrive.org
07 Feb 2015 19:04:16
Original commit files touched by this commit  5.4.4,1
Revision:378611 This port version is marked as vulnerable.
ashish search for other commits by this committer
OpenSMTPD port updates

mail/opensmtpd:
 - Update to 5.4.4p1
 - Add LIBASRDEVEL option to depend on dns/libasr-devel
 - Use OpenSSL from ports, should help with migration to LibreSSL
 - Explicitly provide path to OpenSSL[1]

mail/opensmtpd-devel:
 - Update to 201502012312
 - Add LIBASR option to depend on dns/libasr
 - Remove MYSQL, PGSQL, LDAP, and REDIS options as they're removed
   upstream
 - Add a note for above to UPDATING
 - Explicitly provide path to OpenSSL[1]
 - Add a diff to fix build failure on FreeBSD[2]

Reported by:	TJ <tj at mrsk.me> (via private email)
Submitted by:	Herbert J. Skuhra <herbert at oslo.ath.cx> (via list)
22 Nov 2014 19:13:50
Original commit files touched by this commit  5.4.2_4,1
Revision:373091 This port version is marked as vulnerable.
crees search for other commits by this committer
Switch to USES=pgsql
22 Nov 2014 13:43:56
Original commit files touched by this commit  5.4.2_4,1
Revision:373059 This port version is marked as vulnerable.
bapt search for other commits by this committer
Remove useless @dir*
19 Sep 2014 12:40:53
Original commit files touched by this commit  5.4.2_4,1
Revision:368555 This port version is marked as vulnerable.
tijl search for other commits by this committer
- Drop dependency on autoconf and automake
- Use correct form of OPTIONS_SUB
- Remove FreeBSD 7 support
- Remove post-deinstall (handled by pkg)
31 Aug 2014 04:13:16
Original commit files touched by this commit  5.4.2_4,1
Revision:366721 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Fix rc.d script so it can distinguish between smtpd processes
  running between host and jail

Submitted by:	Creaky <whatexercise at gmail.com> (via private email)
30 Aug 2014 11:03:27
Original commit files touched by this commit  5.4.2_3,1
Revision:366609 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Drop .la files, no dependees require them

Approved by:	portmgr blanket
24 Jul 2014 13:32:59
Original commit files touched by this commit  5.4.2_3,1
Revision:362796  Sanity Test Failure This port version is marked as vulnerable.
bapt search for other commits by this committer
Only use libevent2

Remove libevent as libevent2 is providing a good compatibility interface as well
as providing better performances.
Remove custom patches from libevent2 and install libevent2 the regular way
Mark ports abusing private fields of the libevent1 API as broken
Import a patch from fedora to have honeyd working with libevent2
Remove most of the patches necessary to find the custom installation we used to
have for libevent2

With hat:	portmgr
05 Jul 2014 19:41:14
Original commit files touched by this commit  5.4.2_2,1
Revision:360813 This port version is marked as vulnerable.
bapt search for other commits by this committer
Fix LIB_DEPENDS
05 Jul 2014 12:19:33
Original commit files touched by this commit  5.4.2_2,1
Revision:360738 This port version is marked as vulnerable.
tijl search for other commits by this committer
Bump more ports that depend on libsqlite3.so:
- ports that set USE_SQLITE with the *_USE option helper
- ports that depend on libsqlite3 indirectly as reported by pkg rquery

Approved by:	portmgr (implicit)
01 Jul 2014 14:39:31
Original commit files touched by this commit  5.4.2_1,1
Revision:360023 This port version is marked as vulnerable.
bapt search for other commits by this committer
Use modern LIB_DEPENDS
04 Jun 2014 00:30:49
Original commit files touched by this commit  5.4.2_1,1
Revision:356418 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Make rc.d script send signals only to the parent daemon process to
  fix a race condition.

Submitted by:	naddy (via private email)
05 Mar 2014 09:52:43
Original commit files touched by this commit  5.4.2,1
Revision:347103 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.4.2p1
- Add OPTIONS for CA bundle, and Redis support
- Switch to OptionsNG helpers
- Remove _smtpf user (not used anymore)

Changes:	http://article.gmane.org/gmane.mail.opensmtpd.general/1415
17 Feb 2014 10:04:05
Original commit files touched by this commit  5.4.1_1,1
Revision:344721 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add missing file

Reported by:	Nicolas EDEL (on IRC)
17 Dec 2013 09:41:43
Original commit files touched by this commit  5.4.1,1
Revision:336705 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Fix typo in rc scripts

Reported by:	feld
07 Dec 2013 17:14:13
Original commit files touched by this commit  5.4.1,1
Revision:335834 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.4.1p1
- Update LICENSE information
- Add OPTIONS for SQLITE, MYSQL, PGSQL, and LDAP
- Add STAGE support
- Add a note to UPDATING about change in configuration

Changes:		http://article.gmane.org/gmane.mail.opensmtpd.general/1146
20 Sep 2013 19:59:14
Original commit files touched by this commit  5.3.3,1
Revision:327742 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
mail)
23 Jul 2013 21:39:07
Original commit files touched by this commit  5.3.3,1
Revision:323553 This port version is marked as vulnerable.
ade search for other commits by this committer
Hack around fallout from recent update to automake-1.14
30 Jun 2013 21:42:52
Original commit files touched by this commit  5.3.3,1
Revision:322107 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add opensmtpd-devel package to CONFLICTS_INSTALL
- Update LICENSE information to point to the actual LICENSE file[1]

Submitted by:	Alexander Milanov <a at amilanov.com>[1] (private mail)
07 Jun 2013 03:39:32
Original commit files touched by this commit  5.3.3,1
Revision:320144 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.3.3p1
- Remove unneeded dependency on databases/sqlite3
- Use a cleaner way to pass configuration directory[1]

PR:		ports/179364[1]
Submitted by:	Emmanuel Vadot <elbarto at bocal.org>[1]
Changes:	http://article.gmane.org/gmane.mail.opensmtpd.general/630
18 May 2013 21:54:43
Original commit files touched by this commit  5.3.2,1
Revision:318456 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.3.2p1

Changes:		http://article.gmane.org/gmane.mail.opensmtpd.general/561
27 Apr 2013 17:35:35
Original commit files touched by this commit  5.3.1,1
Revision:316677 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.3.1p1
- Use CONFLICTS_INSTALL, instead of CONFLICTS[1]

Changes:	http://article.gmane.org/gmane.mail.opensmtpd.general/469
Reported by:	Vincent Gross <dermiste at kilob.yt>
27 Mar 2013 14:58:56
Original commit files touched by this commit  5.3,1
Revision:315389 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to 5.3p1
- Bump PORTEPOCH
- Add additional USERS for privilege separation
- Add instructions for fixing permissions in pkg-message
- Add a note about privilege separation to UPDATING file

Changes:		http://article.gmane.org/gmane.mail.opensmtpd.general/446
04 Mar 2013 02:50:49
Original commit files touched by this commit  201303011853
Revision:313390 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201303011853
- Add option for PAM support

Changes:		http://article.gmane.org/gmane.mail.opensmtpd.general/435
23 Feb 2013 11:45:35
Original commit files touched by this commit  201302212015
Revision:312807 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201302212015p1

Changes:	http://article.gmane.org/gmane.mail.opensmtpd.general/405
16 Feb 2013 07:19:27
Original commit files touched by this commit  201302152354
Revision:312325 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201302152354

Changes:	http://thread.gmane.org/gmane.mail.opensmtpd.general/401
14 Feb 2013 14:31:31
Original commit files touched by this commit  201302141353
Revision:312231 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201302141353

Changes:	http://article.gmane.org/gmane.mail.opensmtpd.general/394
06 Feb 2013 16:10:57
Original commit files touched by this commit  201302051638
Revision:311777 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201302051638
31 Jan 2013 20:30:18
Original commit files touched by this commit  201301312105
Revision:311335 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201301312105
29 Jan 2013 22:39:15
Original commit files touched by this commit  201301281310
Revision:311189 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201301281310
21 Jan 2013 00:44:06
Original commit files touched by this commit  201301191220
Revision:310728 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201301191220
- Add a note to UPDATING about flushing queue before update

Changes:	http://thread.gmane.org/gmane.mail.opensmtpd.general/341
18 Jan 2013 14:37:06
Original commit files touched by this commit  201301111154
Revision:310608 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201301111154

Previous version committed few minutes ago was not latest, an error on my
part.
18 Jan 2013 14:26:49
Original commit files touched by this commit  201301050937
Revision:310606 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201301050937
02 Jan 2013 13:25:06
Original commit files touched by this commit  201212222206
Revision:309815 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201212222206
- Add dependency on databases/sqlite3
- Remove ABI version from LIB_DEPENDS
- Document the configuration change in UPDATING
09 Oct 2012 08:01:26
Original commit files touched by this commit  201210090136
Revision:305572 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201210090136
24 Sep 2012 18:15:43
Original commit files touched by this commit  201209190752
Revision:304791 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201209190752
22 Aug 2012 17:18:42
Original commit files touched by this commit  201208192045
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201208192045
15 Aug 2012 07:26:24
Original commit files touched by this commit  201207311144
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201207311144
- Fix rc.d script

PR:		ports/170577
Submitted by:	Artis Caune <Artis.Caune at gmail.com>
28 Jul 2012 12:14:54
Original commit files touched by this commit  201207281129
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201207281129
19 Jul 2012 14:50:29
Original commit files touched by this commit  201207111000
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201207111000
24 Jun 2012 14:43:27
Original commit files touched by this commit  201206212223_1
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add mirror to MASTER_SITES
- Add dependency on OpenSSL and fix for brokenness on 7.3
- Bump PORTREVISION

Reported by:    pav
23 Jun 2012 16:16:01
Original commit files touched by this commit  201206212223
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201206212223
16 Jun 2012 22:34:10
Original commit files touched by this commit  201206161848
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201206161848
- Remove a patch, accepted by upstream
29 May 2012 13:55:37
Original commit files touched by this commit  201205220027
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Update to latest snapshot 201205220027
16 May 2012 12:06:27
Original commit files touched by this commit  201205011446
 This port version is marked as vulnerable.
ashish search for other commits by this committer
- Add USER/GROUP, missed from previous commit
- Add _smtpd user to UIDs/GIDs

Reported by:    Nike <k-nike@inbox.ru>
14 May 2012 13:12:32
Original commit files touched by this commit  201205011446
 This port version is marked as vulnerable.
ashish search for other commits by this committer
OpenSMTPD is a FREE implementation of the server-side SMTP protocol as
defined by RFC 5321, with some additional standard extensions. It
allows ordinary machines to exchange e-mails with other systems
speaking the SMTP protocol.

WWW:    http://www.OpenSMTPD.org/

Number of commits found: 88

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
freetype2Oct 22
chromiumOct 21
mysql56-serverOct 21
mysql57-serverOct 21
mysql80-serverOct 21
mariadb103-clientOct 18
mariadb103-serverOct 18
mariadb104-clientOct 18
mariadb104-serverOct 18
mariadb105-clientOct 18
mariadb105-serverOct 18
drupal7Oct 17
py-matrix-synapseOct 17
powerdns-recursorOct 14
linux-flashplayerOct 13

9 vulnerabilities affecting 118 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2020-10-22 09:39:08


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 41232
Broken 57
Deprecated 271
Ignore 296
Forbidden 4
Restricted 146
No CDROM 73
Vulnerable 20
Expired 13
Set to expire 242
Interactive 0
new 24 hours 5
new 48 hours10
new 7 days91
new fortnight108
new month194

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2020 Dan Langille. All rights reserved.