| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
According to https://s.apache.org/ng9u9, 3.4.5 fixes CVE-2020-1946.
The announce text:
Apache SpamAssassin 3.4.5 was recently released [1], and fixes an issue
of security note where malicious rule configuration (.cf) files can be
configured to run system commands.
In Apache SpamAssassin before 3.4.5, exploits can be injected in a number
of scenarios. In addition to upgrading to SA 3.4.5, users should only use
update channels or 3rd party .cf files from trusted places.
Apache SpamAssassin would like to thank Damian Lukowski at credativ for
ethically reporting this issue.
This issue has been assigned CVE id CVE-2020-1946 [2]
To contact the Apache SpamAssassin security team, please e-mail
security at spamassassin.apache.org. For more information about Apache
SpamAssassin, visit the https://spamassassin.apache.org/ web site.
Apache SpamAssassin Security Team
[1]: https://s.apache.org/ng9u9
[2]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-1946
PR: 254526
Submitted by: cy
Reported by: cy
Approved by: maintainer (zeising)
MFH: 2021Q1
Security: https://s.apache.org/ng9u9
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-1946
Notes:
svn path=/head/; revision=569156
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update mail/spamassassin to 3.4.4. This fixes several security
vulnderabilities.
Changelog:
- Improvements to OLEVBMacro
- Fix for CRLF handling with SpamAssMilter & DKIM
- Small fix for a regexp to provide Perl 5.8.x compatability again
- Increased fns_extrachars default value to 50
- Fixed nosubject and maxhits tflags when sa-compile is used
- Limited the Bayes parsed token count
- Improvements to whitespace trimming
PR: 243744
Submitted by: cy
MFH: 2020Q1
Security: c86bfee3-4441-11ea-8be3-54e1ad3d6335
Notes:
svn path=/head/; revision=524723
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
2019-12-11: Apache SpamAssassin 3.4.3 has been released! Apache
SpamAssassin 3.4.3 contains numerous tweaks and bug fixes as we prepare
to move to version 4.0.0 with better, native UTF-8 handling. There are a
number of functional patches, improvements as well as security reasons to
upgrade to 3.4.3. In this release, there is also one new plugin and there
are bug fixes for two CVEs:
CVE-2019-12420 for Multipart Denial of Service Vulnerability
CVE-2018-11805 for nefarious CF files can be configured to run system
commands without any output or errors.
PR: 242618
Submitted by: cy
Reported by: cy
Approved by: zeising (maintainer)
MFH: 2019Q4
Security: CVE-2019-12420, CVE-2018-11805
Notes:
svn path=/head/; revision=520065
|
|
|
|
|
|
|
|
|
|
| |
and in sync. japanese/spamassassin was removed by r488786.
Approved by: zeising (maintainer, implicit)
MFH: 2019Q4
Notes:
svn path=/head/; revision=520064
|
|
|
|
| |
Notes:
svn path=/head/; revision=508882
|
|
|
|
|
|
|
|
|
| |
PR: 234921
Submitted by: ler@FreeBSD.org
Approved by: zeising
Notes:
svn path=/head/; revision=492264
|
|
|
|
|
|
|
|
|
|
| |
Revert r484326, switch to gpg2, silence gpg2 memory warnings.
I have gotten multiple reports of this causing issues when upgrading or
installing. Revert this until I can look at this in more detail.
Notes:
svn path=/head/; revision=484899
|
|
|
|
|
|
|
|
|
|
| |
Fix build in japanese/spamassassin.
Fix INDEX
Pointy-hat to: zeising
Notes:
svn path=/head/; revision=484357
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Switch to use gpg2 instead of the old and mostly deprecated gpg as the
default gpg version.
Add a gpg.conf file to silence the warning about using insecure memory with
gpg2 [1].
Bump portrevision
Submitted by: Larry Rosenman (ler) [1]
Notes:
svn path=/head/; revision=484326
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update mail/spamassassin to 3.4.2. This update includes security fixes.
For complete changelog and upgrade notes, see:
https://mail-archives.apache.org/mod_mbox/spamassassin-announce/201809.mbox/%3cc44ca0f1-cba9-b129-20b2-ba59816cfd13@apache.org%3e
Big thanks to Larry Rosenman (ler) for help with testing!
PR: 231412
Reported by: dewayne@heuristicsystems.com.au
Tested by: ler
MFH: 2018Q3
Security: 613193a0-c1b4-11e8-ae2d-54e1ad3d6335
Notes:
svn path=/head/; revision=480763
|
|
|
|
|
|
|
|
|
| |
Starting or stopping services is the role of pkg(8).
Sponsored by: Absolight
Notes:
svn path=/head/; revision=473439
|
|
|
|
|
|
|
| |
Sponsored by: Absolight
Notes:
svn path=/head/; revision=459451
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
RELAY_COUNTRY is enabled [0]
While here, carbage collect the UPDATE_AND_COMPILE option from
OPTIONS_DEFUALT, this was most likely missed in r425590
Don't bump portrevision, since this dependency is nut pulled in by default.
PR: 222649 [0]
Reported by: Max Kostikov <max@kostikov.co> [0]
Notes:
svn path=/head/; revision=451792
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add a patch from upstream to fix runtime when using perl 5.26 or later. [0]
Change default options to include DKIM and SPF checking.
Bump portrevision.
PR: 220474 (based on) [0]
Reported by: Trond.Endrestol@ximalas.info [0]
Notes:
svn path=/head/; revision=447641
|
|
|
|
| |
Notes:
svn path=/head/; revision=441670
|
|
|
|
|
|
|
|
|
| |
PR: 217955
Submitted by: cyberbotx@cyberbotx.com
MFH: 2017Q2
Notes:
svn path=/head/; revision=437451
|
|
|
|
|
|
|
|
|
| |
PR: 217487
Submitted by: Igor Roshchin <spamd-pr@str.komkon.org>
MFH: 2017Q1
Notes:
svn path=/head/; revision=437147
|
|
|
|
| |
Notes:
svn path=/head/; revision=431043
|
|
|
|
|
|
|
|
|
| |
matching standard ones from `Mk/bsd.options.desc.mk'
- Rename couple of options to standard name or the one that better reflects
their usage
Notes:
svn path=/head/; revision=426080
|
|
|
|
|
|
|
|
|
|
|
| |
the plist. Remove the UPDATE_ON_INSTALL option entirely, and just add
a blurb to the pkg-message instructing people to run sa-update and
sa-compile manually.
Thanks to Matthew Fuller for prodding a better solution.
Notes:
svn path=/head/; revision=425590
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
had a valid DNS entry. People have asked about it on the mailing list
as far back as August, but literally nobody has replied to any of those
posts, and no commits or wiki updates have been made regarding this,
making it reasonably appear that nobody on the SpamAssassin team has
noticed or cares that SpamAssassin no longer updates.
For now, just add a patch that turns sa-update(1) into a no-op.
While here, add a couple simple Makefile tweaks and bump PORTREVISION.
Notes:
svn path=/head/; revision=425497
|
|
|
|
| |
Notes:
svn path=/head/; revision=419484
|
|
|
|
|
|
|
| |
Approved by: portmgr blanket
Notes:
svn path=/head/; revision=415503
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is a patch make by Debian's own Noah Meyerhans that disables SSLv3,
fixes or removes the tests that choke without SSLv3, and lets
IO::Socket::SSL choose the best TLS level rather than forcing it at
TLSv1.
I can't think of a responsible reason to allow re-enabling it as an
OPTION, so add a note to UPDATING warning people of the change and
referencing the below PR.
PORTREVISION bump.
PR: 208225
Submitted by: Sascha Holzleiter
Obtained from: https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199
MFH: 2016Q2
Notes:
svn path=/head/; revision=412519
|
|
|
|
|
|
|
|
| |
With hat: portmgr
Sponsored by: Absolight
Notes:
svn path=/head/; revision=412348
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Net::DNS 1.03. The FreeBSD p5-Net-DNS port has been downgraded to 1.02 but
Net::DNS will be re-issued at some point soon. The changes in these patches
seem to work well with Net::DNS 1.02.
While here, add some TEST_DEPENDS so I can run the plugin-based tests as well.
Bump PORTREVISION for spamassassin and japanese/spamassassin.
PR: 204682
Submitted by: Mark.Martinec@ijs.si
Obtained from: https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7265
Notes:
svn path=/head/; revision=402285
|
|
|
|
|
|
|
|
|
|
|
| |
calling each/keys on a hashref.
While here, convert @unexec stuff into preunexec and postunexec.
Submitted by: Larry Rosenman
Obtained from: https://svn.apache.org/viewvc?view=revision&revision=1684653
Notes:
svn path=/head/; revision=398551
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Move Perl's man1 files along with its man3 files.
- Move where Perl installs its modules man1 pages.
- Convert the ports installing man1 pages.
- Make different Perl versions installable at the same time.
Though you should note that only the default version can be used to
install Perl modules, and the non default Perl versions cannot use the
modules installed via ports if they contain .so as they are installed
in a version specific directory.
Reviewed by: bapt (the Mk bits)
Exp-run by: antoine
Sponsored by: Absolight
Differential Revision: https://reviews.freebsd.org/D3542
Notes:
svn path=/head/; revision=396892
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
with the output of the new Net::DNS version.
See https://svn.apache.org/viewvc/spamassassin/branches/3.4/lib/Mail/SpamAssassin/Plugin/URIDNSBL.pm?r1=1694126&r2=1694125&pathrev=1694126&view=patch
for more information.
PR: 202281
Submitted by: Mark Martinec, author of the upstream patch
Notes:
svn path=/head/; revision=394329
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Now that a port dns/p5-Net-DNS has been upgraded to version 1.01,
this revealed an incompatibility with DNS resolving in SpamAssassin.
In short: Net::DNS::Packet->new no longer sets the RD (recursion
desired) bit in new packets, so essentially DNS queries no longer
work. Details at:
https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7223
To bridge the time until SpamAssassin 3.4.2 gets released,
the attached patch is needed ( equivalent to
https://svn.apache.org/viewvc?view=rev&rev=1691992 ).
For earlier version of dns/p5-Net-DNS this patch is redundant,
but does no harm.
PR: 201741
Submitted by: Mark.Martinec@ijs.si
Notes:
svn path=/head/; revision=392630
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.
While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.
Also, replace some EXTRACT_SUFX occurences with USES=tar:*.
Checked by: make fetch-urlall-list
With hat: portmgr
Sponsored by: Absolight
Notes:
svn path=/head/; revision=386312
|
|
|
|
|
|
|
| |
Submitted by: Terry Kennedy
Notes:
svn path=/head/; revision=385022
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
* improved automation to help combat spammers that are abusing new top level
domains;
* tweaks to the SPF support to block more spoofed emails;
* increased character set normalization to make rules easier to develop and
stop spammers from using alternate character sets to bypass tests;
* continued refinement to the native IPv6 support; and
* improved Bayesian classification with better debugging and attachment
hashing.
Full ChangeLog at https://metacpan.org/changes/distribution/Mail-SpamAssassin
The japanese/spamassassin port is broken until it's updated for 3.4.1.
Notes:
svn path=/head/; revision=385003
|
|
|
|
|
|
|
|
|
| |
Inspired by:
PR: 197837
Submitted by: bogus19@veggiechinese.net
Notes:
svn path=/head/; revision=381227
|
|
|
|
|
|
|
|
|
|
|
|
| |
There is a report that defining command_interpreter actually causes
problem for spamd, athought it should not. While the reason is being
investigated, the previous change has been reverted per maintainer's
request.
PR 196517
Notes:
svn path=/head/; revision=376379
|
|
|
|
|
|
|
|
| |
spamd is a perl script, so defining command_interpreter is required
for proper rc.d functioning.
Notes:
svn path=/head/; revision=376295
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
that show up during sa-learn, sa-compile, etc.
Note that other warnings can still show up, ex.:
zoom: rule __FOR_SALE_PRC_100K will loop on SpamAssassin older than 3.3.2 running under Perl 5.12 or older, Bug 6558
While here, go with the @dir new world order. SA is not poudriere clean at this time;
/var/spool/spamd is the homedir of user spamd, so I am pretty sure it shouldn't be
listed with @dir. QA sees this as a leftover dir.
PR: 195524
Submitted by: Bernard Spil
Notes:
svn path=/head/; revision=373689
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Before, we had:
site_perl : lib/perl5/site_perl/5.18
site_perl/perl_arch : lib/perl5/site_perl/5.18/mach
perl_man3 : lib/perl5/5.18/man/man3
Now we have:
site_perl : lib/perl5/site_perl
site_arch : lib/perl5/site_perl/mach/5.18
perl_man3 : lib/perl5/site_perl/man/man3
Modules without any .so will be installed at the same place regardless of the
Perl version, minimizing the upgrade when the major Perl version is changed.
It uses a version dependent directory for modules with compiled bits.
As PERL_ARCH is no longer needed in plists, it has been removed from
PLIST_SUB.
The USE_PERL5=fixpacklist keyword is removed, the .packlist file is now
always removed, as is perllocal.pod.
The old site_perl and site_perl/arch directories have been kept in the
default Perl @INC for all Perl ports, and will be phased out as these old
Perl versions expire.
PR: 194969
Differential Revision: https://reviews.freebsd.org/D1019
Exp-run by: antoine
Reviewed by: perl@
Approved by: portmgr
Notes:
svn path=/head/; revision=373448
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Update to 1.3.155.
- Stage.
- Build as a user.
- Add the option back to spamassassin.
Sponsored by: Absolight
Notes:
svn path=/head/; revision=367931
|
|
|
|
| |
Notes:
svn path=/head/; revision=367498
|
|
|
|
| |
Notes:
svn path=/head/; revision=364547
|
|
|
|
|
|
|
| |
spam/malware-catching rulesets.
Notes:
svn path=/head/; revision=362169
|
|
|
|
|
|
|
|
|
|
|
|
| |
not create the directory from the @dirrm /var/run/spamd in the plist.
So, we'll do it manually for the next 6 weeks.
PR: 190005
Submitted by: Trond.Endrestol@ximalas.info
Notes:
svn path=/head/; revision=361699
|
|
|
|
|
|
|
|
|
| |
variable in a debug message.
Submitted by: Herbert J. Skuhra
Notes:
svn path=/head/; revision=360891
|
|
|
|
|
|
|
| |
to bsd.options.desc.mk.
Notes:
svn path=/head/; revision=360661
|
|
|
|
|
|
|
|
|
|
| |
UPDATE_AND_COMPILE option is off. It can still be activated
later for people who do it themselves.
Submitted by: Herbert J. Skuhra
Notes:
svn path=/head/; revision=360092
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Verify that /var/run/spamd exists before starting [2]
* While here, reformat Makefile
PR: ports/191101 [1], ports/189912 [1], ports/190005 [2]
Submitted by: Daniel Austin <freebsd-ports@dan.me.uk> and pi [1a],
brian@behlendorf.com [1b], Trond.Endrestol@ximalas.info [2]
Notes:
svn path=/head/; revision=358624
|
|
|
|
|
|
|
|
|
|
|
|
| |
Let pkg-create handle ownership/mode better. Use @dirrmtry instead of
@unexec rmdir. Use COPYTREE_SHARE to ensure proper permissions.
Also, stop the spamd service on deinstall if it's running. It creates
zombie issues otherwise... I'm pretty sure this is the right thing to
do.
Notes:
svn path=/head/; revision=352762
|