Mercurial > dovecot > original-hg > dovecot-1.2

comparison NEWS @ 5575:94baeec6df73 HEAD

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
updated from v1.0
author Timo Sirainen <tss@iki.fi>
date Tue, 17 Apr 2007 20:26:14 +0300
parents cda5c90cae57
children 1338ba4aac1e
comparison
equal deleted inserted replaced
5574:0bc6ec4cddab 5575:94baeec6df73
1 v1.0.0 2007-04-13 Timo Sirainen <tss@iki.fi>
2
3 + Documentation updated.
4
5 v1.0.rc32 2007-04-12 Timo Sirainen <tss@iki.fi>
6
7 - LDAP, auth_bind=no: Don't crash if doing non-plaintext ldap passdb
8 lookup for unknown user. This also broke deliver when userdb static
9 was used.
10 - LDAP, auth_bind=yes and userdb ldap: We didn't wait until bind was
11 finished before sending the userdb request, which could have caused
12 problems.
13 - LDAP: Don't break when compiling with OpenLDAP v2.3 library
14 - Convert plugin: Don't create "maildirfolder" file to Maildir root.
15
16 v1.0.rc31 2007-04-08 Timo Sirainen <tss@iki.fi>
17
18 - mbox: Give "mbox file was modified while we were syncing" error only
19 if we detect some problems in the mbox file. The check can't be
20 trusted with NFS.
21 - Convert plugin: If directory for destination storage doesn't exist,
22 create it.
23 - Convert plugin: Mailbox names weren't converted in subscription list.
24
25 v1.0.rc30 2007-04-06 Timo Sirainen <tss@iki.fi>
26
27 * PAM: Lowercase the PAM service name when calling with "args = *".
28 Linux PAM did this internally already, but at least BSD didn't.
29 If your PAM file used to be in /etc/pam.d/IMAP or POP3 file you'll
30 need to lowercase it now.
31
32 + Send list of CA names to client when using
33 ssl_verify_client_cert=yes.
34 - IMAP: If message body started with line feed, it wasn't counted
35 in BODY and BODYSTRUCTURE replies' line count field.
36 - deliver didn't load plugins before chrooting
37
38 v1.0.rc29 2007-03-28 Timo Sirainen <tss@iki.fi>
39
40 * Security fix: If zlib plugin was loaded, it was possible to open
41 gzipped mbox files outside the user's mail directory.
42
43 + Added auth_gssapi_hostname setting.
44 - IMAP: LIST "" "" didn't return anything if there didn't exist a
45 namespace with empty prefix. This broke some clients.
46 - If Dovecot is tried to be started when it's already running, don't
47 delete existing auth sockets and break the running Dovecot
48 - If deliver failed too early it still returned exit code 89 instead
49 of EX_TEMPFAIL.
50 - deliver: INBOX fallbacking with -n parameter wasn't working.
51 - passdb passwd and shadow couldn't be used as master or deny databases
52 - IDLE: inotify didn't notice changes in mbox file
53 - If index file directory couldn't be created, disable indexes instead
54 of failing to open the mailbox.
55 - rawlog wasn't working with chrooting
56 - Several other minor fixes
57
58 v1.0.rc28 2007-03-23 Timo Sirainen <tss@iki.fi>
59
60 * deliver + userdb static: Verify the user's existence from passdb,
61 unless allow_all_users=yes
62 * dovecot --exec-mail: Log to configured log files instead of stderr
63 * Added "-example" part to doc/dovecot-sql-example.conf and
64 doc/dovecot-ldap-example.conf. They are now also installed to
65 $sysconfdir with "make install".
66
67 + When copying/syncing a lot of mails, send "* OK Hang in there"
68 replies to client every 15 seconds so it doesn't just timeout the
69 connection.
70 + Added idxview and logview utilities to examine Dovecot's index files
71 + passdb passwd and shadow support blocking=yes setting now also
72 + mbox: If mbox file changes unexpectedly while we're writing to it,
73 log an error.
74 + deliver: Ignore -m "" parameter to make calling it easier.
75 + deliver: Added new -n parameter to disable autocreating mailboxes.
76 It affects both -m parameter and Sieve plugin's fileinto action
77 - mbox: Using ~/ in the mail root directory caused a ~ directory to be
78 created (instead of expanding it to home directory)
79 - auth cache: If unknown user was found from cache, we didn't properly
80 return "unknown user" status, which could have caused problems in
81 deliver.
82 - mbox: Fixed "UID inserted in the middle of mailbox" in some
83 conditions with broken X-UID headers
84 - Index view syncing fixes
85 - rc27 didn't compile with some non-GCC compilers
86 - vpopmail support didn't compile in rc27
87 - NFS check with chrooting broke home direcotry for the first login
88 - deliver: If user lookup returned "unknown user", it logged
89 "BUG: Unexpected input"
90 - convert plugin didn't convert INBOX
91
92 v1.0.rc27 2007-03-13 Timo Sirainen <tss@iki.fi>
93
94 + mbox and index file code handles silently out of quota/disk
95 space errors (maildir still has problems). They will give the user
96 a "Not enough disk space" error instead of flooding the log file.
97 + Added fsync_disable setting.
98 + mail-log plugin: Log the mailbox name, except if it's INBOX
99 + dovecot-auth: Added a lot more debug logging to passdbs and userdbs
100 + dovecot-auth: Added %c variable which expands to "secured" with
101 SSL/TLS/localhost.
102 + dovecot-auth: Added %m variable which expands to auth mechanism name
103 - maildir++ quota: With ignore=box setting the quota was still updated
104 for the mailbox even though it was allowed to go over quota (but
105 quota recalculation ignored the box).
106 - Index file handling fixes
107 - mbox syncing fixes
108 - Wrong endianess index files still weren't silently rebuilt
109 - IMAP quota plugin: GETQUOTAROOT returned the mailbox name wrong the
110 namespace had a prefix or if its separator was non-default
111 - IMAP: If client was appending multiple messages with MULTIAPPEND
112 and LITERAL+ extensions and one of the appends failed, Dovecot
113 treated the rest of the mail data as IMAP commands.
114 - If mail was sent to client with sendfile() call, we could have
115 hanged the connection. This could happen only if mails were saved
116 with CR+LF linefeeds.
117
118 v1.0.rc26 2007-03-07 Timo Sirainen <tss@iki.fi>
119
120 * Changed --with-headers to --enable-header-install
121 * If time moves backwards only max. 5 seconds, sleep until we're back
122 in the original present instead of killing ourself. An error is
123 still logged.
124
125 - IMAP: With namespace prefixes LSUB prefix.* listed INBOX.INBOX.
126 - deliver: Ignore mbox metadata headers from the message input.
127 X-IMAP header crashed deliver.
128 - deliver: If mail_debug=yes, drop out DEBUG environment before
129 calling sendmail binary. Postfix's sendmail didn't really like it.
130 - mbox: X-UID brokeness fixes broke rc25 even with valid X-UID headers.
131 Now the code should finally work right.
132 - Maildir: When syncing a huge maildir, touch dovecot-uidlist.lock file
133 once in a while to make sure it doesn't get overwritten by another
134 process.
135 - Maildir++ quota: We didn't handle NUL bytes in maildirsize files very
136 well. Now the file is rebuilt when they're seen (NFS problem).
137 - Index/view handling fix should fix some crashes/errors
138 - If index files were moved to a different endianess machine, Dovecot
139 logged all sorts of errors instead of silently rebuilding them.
140 - Convert plugin didn't change hierarchy separators in mailbox names.
141 - PostgreSQL authentication could have lost requests once in a while
142 with a heavily loaded server.
143 - Login processes could have crashed in some situations
144 - auth cache crashed with non-plaintext mechanisms
145
146 v1.0.rc25 2007-03-01 Timo Sirainen <tss@iki.fi>
147
148 * If time moves backwards, Dovecot kills itself instead of giving
149 random problems.
150
151 + Added --with-headers configure option to install .h files.
152 Binary package builders could use this to create some dovecot-dev
153 package to make compiling plugins easier.
154 - PLAIN authentication: Don't crash dovecot-auth with invalid input.
155 - IMAP APPEND: Don't crash if saving fails
156 - IMAP LIST: If prefix.INBOX has children and we're listing under
157 prefix.%, don't drop the prefix.
158 - mbox: Broken X-UID headers still weren't handled correctly.
159 - mail-log plugin: Fixed deleted/undeleted logging.
160
161 v1.0.rc24 2007-02-22 Timo Sirainen <tss@iki.fi>
162
163 * Dovecot now fails to load plugins that were compiled for different
164 Dovecot version, unless version_ignore=yes is set. This needs to be
165 explicitly set in plugins, so out-of-tree plugins won't have this
166 check by default.
167
168 - pop3_lock_session=yes could cause deadlocks, and with maildir the
169 uidlist lock could have been overridden after 2 minutes causing
170 problems
171 - PAM wasted CPU by calling a timeout function 1000x too often
172 - Trash plugin was more or less broken with multiple namespaces and
173 with multiple trash mailboxes
174
175 v1.0.rc23 2007-02-20 Timo Sirainen <tss@iki.fi>
176
177 * deliver doesn't ever exit with Dovecot's internal exit codes anymore.
178 All its internal exit codes are changed to EX_TEMPFAIL.
179 * mbox: X-Delivery-ID header is now dropped when saving mails.
180 * mbox: If pop3_uidl_format=%m, we generate a unique X-Delivery-ID
181 header when saving mails to make sure the UIDL is unique.
182
183 + PAM: blocking=yes in args uses an alternative way to do PAM checks.
184 Try it if you're having problems with PAM.
185 + userdb passwd: blocking=yes in args makes the userdb lookups be done
186 in auth worker processes. Set it if you're doing remote NSS lookups
187 (eg. nss_ldap problems are fixed by this).
188 + If PAM child process hasn't responded in two minutes, send KILL
189 signal to it (only with blocking=no)
190 - IMAP: APPEND ate all CPU while waiting for more data from the client
191 (broken in rc22)
192 - mbox: Broken X-UID headers assert-crashed sometimes
193 - mbox: When saving a message to an empty mbox file it got an UID
194 which immediately got incremented.
195 - mbox: Fixed some wrong "uid-last unexpectedly lost" errors.
196 - auth cache: In some situations we crashed if passdb had extra_fields.
197 - auth cache: Special extra_fields weren't saved to auth cache.
198 For example allow_nets restrictions were ignored for cached entries.
199 - A lot of initial login processes could cause auth socket errors
200 in log file at startup, if dovecot-auth started slowly. Now the
201 login processes are started only after dovecot-auth has finished
202 initializing itself.
203 - imap/pop3 proxy: Don't crash if the remote server disconnects before
204 we're logged in.
205 - deliver: Don't bother trying to save the mail twice into the default
206 mailbox (eg. if it's over quota).
207 - mmap_disable=yes + non-Linux was really slow with large
208 dovecot.index.cache files
209 - MySQL couldn't be used as a masterdb
210 - Trash plugin was more or less broken
211 - imap/pop3 couldn't load plugins if they chrooted
212 - imap/pop3-login process could crash in some conditions
213 - checkpassword-reply crashed if USER/HOME wasn't set
214
215 v1.0.rc22 2007-02-06 Timo Sirainen <tss@iki.fi>
216
217 + pop3: Commit the transaction even if client didn't QUIT so cached
218 data gets saved.
219 - Fixed another indexing bug in rc19 and later which caused
220 transactions to be skipped in some situations, causing all kinds of
221 problems.
222 - mail_log_max_lines_per_sec was a bit broken and caused crashes with
223 dovecot -a
224 - BSD filesystem quota was counted wrong. Patch by Manuel Bouyer
225 - LIST: If namespace has a prefix and inbox=no, don't list
226 prefix.inbox if it happens to exist when listing for %.
227
228 v1.0.rc21 2007-02-02 Timo Sirainen <tss@iki.fi>
229
230 - Cache file handling could have crashed rc20
231
232 v1.0.rc20 2007-02-02 Timo Sirainen <tss@iki.fi>
233
234 + dovecot: Added --log-error command line option to log an error, so
235 the error log is easily found.
236 + Added mail_log_max_lines_per_sec setting. Change it to avoid log
237 throttling with mail_log plugin.
238 - Changing message flags was more or less broken in rc19
239 - ACL plugin still didn't work without separate control directory
240 - Some mbox handling fixes, including fixing an infinite loop
241 - Some index file handling fixes
242 - maildir quota: Fixed a file descriptor leak
243 - If auth_cache was enabled and userdb returned "user unknown"
244 (typically only deliver can do that), dovecot-auth crashed.
245 - mail_log plugin didn't work with pop3
246
247 v1.0.rc19 2007-01-23 Timo Sirainen <tss@iki.fi>
248
249 - ACL plugin didn't work unless control dir was separate from maildir
250 - More index file handling fixes
251
252 v1.0.rc18 2007-01-22 Timo Sirainen <tss@iki.fi>
253
254 * ACL plugin + Maildir: Moved dovecot-acl file from control directory
255 to maildir. To prevent accidents caused by this change, Dovecot
256 kills itself if it finds dovecot-acl file from the control directory.
257 * When opening a maildir, check if tmp/'s atime is over 8h old. If it
258 is, delete files in it with ctime older than 36h. However if
259 atime - ctime > 36h, it means that there's nothing to be deleted and
260 the scanning isn't done. We update atime ourself if filesystem is
261 mounted with noatime.
262 * base_dir doesn't need to be group-readable, don't force it.
263 * mail_read_mmaped setting is deprecated and possibly broken. It's now
264 removed from dovecot-example.conf, but it still works for now.
265 * Removed also umask setting from dovecot-example.conf since currently
266 it doesn't do what it's supposed to.
267
268 + Authentication cache caches now also userdb data.
269 + Added mail_log plugin to log various mail operations. Currently it
270 logs mail copies, deletions, expunges and mailbox deletions.
271 - dict quota: messages=n parameter actually changed storage limit.
272 - A lot of fixes to handling index files. This should fix almost all
273 of the problems ever reported.
274 - LDAP: auth_bind=yes was more or less broken.
275 - Saved mails and dovecot-keywords file didn't set the group from
276 dovecot-shared file.
277 - Fixed potential assert-crash while searching messages
278 - Fixed some crashes with invalid X-UID headers in mboxes
279 - If you didn't have a namespace with empty prefix, giving STATUS
280 command for a non-existing namespace caused the connection to give
281 "NO Unknown namespace" errors for all the future commands.
282
283 v1.0.rc17 2007-01-07 Timo Sirainen <tss@iki.fi>
284
285 - MySQL authentication caused username to show up as "OK" in rc16.
286
287 v1.0.rc16 2007-01-05 Timo Sirainen <tss@iki.fi>
288
289 * IMAP: When trying to fetch an already expunged message, Dovecot used
290 to just disconnect client. Now it instead replies with dummy NIL
291 data.
292 * Priority numbers in plugin names have changed. If you're installing
293 from source, you should delete the existing plugin files before
294 installing the new ones, otherwise you'll get errors.
295 * Maildir: We're using rename() to move files from tmp/ to new/ now.
296 See http://wiki.dovecot.org/MailboxFormat/Maildir -> "Issues with
297 the specification" for reasoning why this is safe. This makes saving
298 mails faster, and also makes Dovecot usable with Mac OS X's HFS+
299 (after you also set dotlock_use_excl=yes, see below).
300
301 + Added dotlock_use_excl setting. If enabled, dotlocks are created
302 directly using O_EXCL flag, instead of by creating a temporary file
303 which is hardlinked. O_EXCL is faster, but may not work with NFS.
304 + If Dovecot crashes with Linux or Solaris, it'll log a
305 "Raw backtrace". It's worse than gdb's backtrace, but better than
306 nothing.
307 + Added maildir_copy_preserve_filename=yes setting.
308 + Added a lazy-expunge plugin to allow users to unexpunge their mails.
309 + maildir quota: Added ignore setting to maildir quota, which allows
310 ignoring quota in Trash mailbox.
311 + dict quota: If dictionary doesn't yet contain the quota, calculate
312 it by going through all the mails in all the mailboxes.
313 + login_log_format_elements: Added %a=local port and %b=remote port
314 + Added -i and -o options to rawlog to restrict logging only to
315 input or output.
316 - Doing a STATUS command for a selected mailbox (not a recommended
317 IMAP client behavior) caused Dovecot to sync the mailbox silently.
318 This could have lost eg. EXPUNGE events from clients, causing them
319 to use wrong sequence numbers.
320 - deliver was treating boolean settings set to "no" as if they were
321 "yes" (they were supposed to be commented out for "no")
322 - Running "dovecot" with -a or -n option while Dovecot was running
323 deleted all authentication sockets, which caused all the future
324 logins to fail.
325 - maildir: RENAME and DELETE didn't touch control directory if it was
326 different from maildir or index dir.
327 - We treated internal userdb lookup errors as "user unknown" errors.
328 In such situations this caused deliver to think the user didn't
329 exist and the mail get bounced.
330 - pam: Setting cache_key crashed
331 - shared maildir: dovecot-keywords file's mode wasn't taken from
332 dovecot-shared file.
333 - dovecotpw wasn't working with PowerPC
334
335 v1.0.rc15 2006-11-19 Timo Sirainen <tss@iki.fi>
336
337 * Fixed an off-by-one buffer overflow in cache file handling. The
338 code is executed only with mmap_disable=yes and only if index files
339 are used (ie. INDEX=MEMORY is safe).
340 * passdb checkpassword: Handle vpopmail's non-standard exit codes.
341
342 - rc14 sometimes assert-crashed if .log.2 file existed in a mailbox
343 (earlier versions leaked memory and file descriptors)
344 - io_add() assert-crashfixes
345 - Potential SSL hang fix at the beginning of the connection
346
347 v1.0.rc14 2006-11-12 Timo Sirainen <tss@iki.fi>
348
349 * LDAP: Don't try to use ldap_bind() with empty passwords, since
350 Windows 2003 AD skips password checking with them and just returns
351 success.
352 * verbose_ssl=yes: Don't bother logging "syscall failed: EOF"
353 messages. No-one cares about them.
354
355 + Dovecot sources should now compile without any warnings with gcc 3.2+
356 - rc13 crashed if client disconnected while IDLEing
357 - LDAP: auth_bind=yes fixes
358 - %variables: Fixed zero padding handling and documented it. %0.1n
359 shouldn't enable it, and it really shouldn't stay for the next
360 %variable. -sign also shouldn't stay for the next variable.
361 - Don't leak opened .log.2 transaction logs.
362 - Fixed a potential hang in IDLE command (probably really rare).
363 - Fixed potential problems with client disconnecting while master was
364 handling the login.
365 - quota plugin didn't work in Mac OS X
366
367 v1.0.rc13 2006-11-08 Timo Sirainen <tss@iki.fi>
368
369 + deliver: If we're executing as a normal system user, get the HOME
370 environment from passwd if it's not set. This makes it possible to
371 run deliver from .forward.
372 - Older compilers caused LDAP authentication to crash
373 - Dying LDAP connections weren't handled exactly correctly in rc11,
374 although it seemed to work usually
375 - Fixed crashes and memory leaks with AUTHENTICATE command
376 - Fixed crashes and leaks with IMAP/POP3 proxying
377 - maildir: Changing a mailbox while another process was saving a
378 message there at the same may have caused the changes to not be made
379 into the maildir, which could have caused other problems later..
380
381 v1.0.rc12 2006-11-05 Timo Sirainen <tss@iki.fi>
382
383 - rc11 didn't compile with some compilers
384 - default_mail_env fallbacking was broken with --exec-mail
385
386 v1.0.rc11 2006-11-05 Timo Sirainen <tss@iki.fi>
387
388 * Renamed default_mail_env to mail_location. default_mail_env still
389 works for backwards compatibility.
390 * deliver: When sending rejects, don't include Content-Type in the
391 rejected mail's headers.
392 * LDAP changes:
393 * If auth binds are used, bind back to the default dn before doing
394 a search. Otherwise it could fail if a user gave an invalid
395 password.
396 * Initial binding at connect is now done asynchronously.
397 * Use pass_attrs even with auth_bind=yes since it may contain
398 useful non-password fields.
399
400 + passdb checkpassword: Give TCPLOCALIP and TCPREMOTEIP and PROTO=TCP
401 environments to the checkpassword binary so we're UCSPI (and vchkpw)
402 compatible.
403 - mbox handling was a bit broken in rc10
404 - Using Dovecot via inetd kept crashing dovecot master
405 - deliver: Don't crash with -f "". Changed the default from envelope
406 to be "MAILER-DAEMON".
407 - INBOX wasn't shown with LSUB command if only prefixed namespaces
408 were used.
409 - passdb ldap: Reconnecting to LDAP server wasn't working with
410 auth binds.
411 - passdb sql: Non-plaintext authentication didn't work
412 - MySQL passdb ignored all non-password checks, such as allow_nets
413 - trash plugin was broken
414
415 v1.0.rc10 2006-10-16 Timo Sirainen <tss@iki.fi>
416
417 * When matching allowed_nets IPs, convert IPv6-mapped-IPv4 addresses
418 to actual IPv4 addresses first.
419
420 + IMAP: Try to avoid sending duplicate/useless message flag updates
421 + Added support for non-plaintext authentication for vpopmail if it
422 returns plaintext passwords. Based on patch by Remi Gacogne.
423 + Added %D modified to return "sub.domain.org" as
424 "sub,dc=domain,dc=org" (for LDAP queries). Patch by Andrey Panin.
425 - rc9 broke cache files in 64bit systems
426 - deliver works now with mail_chroot
427 - auth cache didn't work properly with multiple passdbs
428 - Fixes to handling CRLF linefeeds in mboxes.
429
430 v1.0.rc9 2006-10-14 Timo Sirainen <tss@iki.fi>
431
432 * 64bit systems: dovecot.index.cache file will be rebuilt because
433 some time fields have been changed from 64bit fields to 32bit
434 fields. Now the same cache file can be used in both 32bit and
435 64bit systems without it being rebuilt.
436 * Added libmysqlclient workaround to conflicting sha1_result symbol,
437 which caused Dovecot to fail logging into MySQL.
438
439 + dovecot.index.cache file opening is delayed until it's actually
440 needed. This reduces disk accesses a bit with eg. STATUS commands.
441 + auth_cache: Try to handle changing passwords automatically: If
442 password verification fails, but the last one had succeeded, don't
443 use the cache. This works only with plaintext auth.
444 - dovecot.index.cache: We didn't properly detect if some fields were
445 different length than we expected, which caused assert crashes
446 - Lots of fixes to login/master process handling
447 - mbox: Fixed a bug causing "X-IMAPbase uid-last unexpectedly lost
448 in mbox file" errors, and possibly others.
449
450 v1.0.rc8 2006-10-09 Timo Sirainen <tss@iki.fi>
451
452 * GSSAPI: Changed POP3 service name to "pop", which is what the
453 standard says
454 * "mbox:/var/mail/%u" no longer works as the mail location. You'll
455 have to specify the mail root explicitly, just like the examples
456 always have: "mbox:~/mail:INBOX=/var/mail/%u"
457
458 + SHA1, LDAP-MD5, PLAIN-MD5, PLAIN-MD4: The password can be now either
459 hex or base64 encoded. The encoding is detected automatically based
460 on the password string length.
461 + Allow running only Dovecot master and dovecot-auth processes with
462 protocols=none setting
463 + deliver: -f <envelope sender> parameter can be used to set mbox
464 From_-line's sender address
465 + deliver: Log all mail saves and failures
466 + Tru64 SIA passdb support. Patch by Simon L Jackson.
467 - INBOX was listed twice in mailbox list if namespace prefix was used
468 - INBOX-prefixed namespaces were a bit broken
469 - kqueue: Fix 100% CPU usage
470 - deliver: Duplicate storage was a bit broken
471 - dictionary code was broken (ie. dict quota)
472 - SIGHUP caused crashes sometimes
473
474 v1.0.rc7 2006-08-18 Timo Sirainen <tss@iki.fi>
475
476 * Require that Dovecot master process's version number matches the
477 child process's, unless version_ignore=yes. Usually it's an
478 accidental installation problem if the version numbers don't match.
479 * Maildir: Create maildirfolder file when creating new maildirs.
480
481 + ldap+prefetch: Use global uid/gid settings if LDAP query doesn't
482 return them
483 + %variables: Negative offsets count from the end of the string.
484 Patch by Johannes Berg.
485 - kqueue ioloop code rewrite
486 - notify=kqueue might have caused connection hangs sometimes
487 - deliver: If message body contained a valid mbox From_ line, it
488 and the rest of the message was skipped.
489 - mbox: We got into infinite loops if trying to open a 2 byte sized
490 file as mbox.
491 - Don't crash with ssl_disable=yes
492 - quota plugin caused compiling problems with some OSes
493 - mbox: After saving a mail to a synced mbox, we lost the sync which
494 caused worse performance
495
496 v1.0.rc6 2006-08-07 Timo Sirainen <tss@iki.fi>
497
498 * Removed login_max_logging_users setting since it was somewhat weird
499 in how it worked. Added login_max_connections to replace it with
500 login_process_per_connection=no, and with =yes its functionality
501 is now within login_max_processes_count.
502
503 + Added --with-linux-quota configure option to specify which Linux
504 quota version to use, in case it's not correct in sys/quota.h.
505 Usually used as --with-linux-quota=2
506 + acl plugins: If .DEFAULT file exists in global ACL root directory,
507 use it as the default ACLs for all mailboxes.
508 - Fixes to login process handling, especially with
509 login_process_per_connection=no.
510 - Back to the original SSL proxy code but with one small fix, which
511 hopefully fixes the occational hangs with it
512 - Several fixes to handling LIST command more correctly.
513
514 v1.0.rc5 2006-08-02 Timo Sirainen <tss@iki.fi>
515
516 - Saving to mboxes still caused assert-crashes
517
518 v1.0.rc4 2006-08-02 Timo Sirainen <tss@iki.fi>
519
520 - Saving to mboxes caused assert-crashes
521
522 v1.0.rc3 2006-08-02 Timo Sirainen <tss@iki.fi>
523
524 - SSL connections hanged sometimes, especially when saving messages.
525 - mbox: Mail bodies were saved with CR+LF linefeeds
526 - Mail forwarding was broken with deliver/Sieve
527 - dbox fixes. Might actually be usable now.
528 - Index file handling fixes with keywords
529 - Cache file was incorrectly used in some situations, which probably
530 caused problems sometimes.
531 - Maildir++ quota: Don't count "." and ".." directory sizes to quota.
532 After rewriting maildirsize file keep its fd open so that we can
533 later update it. Patch by Alexander Zagrebin
534
535 v1.0.rc2 2006-07-04 Timo Sirainen <tss@iki.fi>
536
537 * disable_plaintext_auth=yes: Removed hardcoded 127.* and ::1 IP
538 checks. Now we just assume that the connection is secure if the
539 local IP matches the remote IP address.
540 * SSL code rewrite which hopefully makes it work better than before.
541 Seems to work correctly, but if you suddently have trouble with SSL
542 connections this is likely the reason.
543
544 + verbose_ssl=yes: Log also SSL alerts and BIO errors
545 - If namespace's location field wasn't set, the default location
546 was supposed to be used but it wasn't.
547 - When copying ssl-parameters.dat file from /var/lib to /var/run its
548 permissions went wrong if it couldn't be copied with hard linking.
549 - Fixed filesystem quota plugin to work with BSDs.
550 - Maildir: Saving mails didn't work if quota plugin was enabled (again)
551 - Maildir: Messages' received time wasn't saved properly when
552 saving/copying multiple messages at a time. Also if using quota
553 plugin the S= size was only set for the first saved file, and even
554 that was wrong.
555 - passdb passwd-file: Don't require valid uid/gid fields if file
556 isn't also being used as a userdb.
557 - PostgreSQL: Handle failures better so that there won't be
558 "invalid fd" errors in logs.
559 - Don't try to expunge messages if the mailbox is read-only. It'll
560 just cause our index files to go out of sync with the real
561 mailbox and cause errors.
562 - ANONYMOUS authentication mechanism couldn't work because
563 anonymous_username setting wasn't passed from master process.
564
565 v1.0.rc1 2006-06-28 Timo Sirainen <tss@iki.fi>
566
567 * PAM: If user's password is expired, give "Password expired" error
568 message to the user. Now actually working thanks to Vaidas Pilkauskas
569 * Relicensed dovecot-auth, lib-sql and lib-ntlm to MIT license. See
570 COPYING file for more information.
571 * Abuse prevention: When creating a mailbox, limit the number of
572 hierarchies (up to 20) and the length of the mailbox name within
573 a hierarchy (up to 200 characters).
574 * mbox: If saved mail doesn't end with LF, add it ourself so that the
575 mails always have one empty line before the next From-line.
576
577 + Added --with-statedir configure option which defaults to
578 $localstatedir/lib/dovecot. ssl-parameters.dat is permanently
579 stored in that directory and is copied to login_dirs from there.
580 + IMAP: Support SASL-IR extension (SASL initial response)
581 + Support initial SASL response with LOGIN mechanism. Patch by Anders
582 Karlsson
583 + Added PLAIN-MD4 password scheme. Patch by Andrey Panin.
584 + Added support for XFS disk quotas. Patch by Pawel Jarosz
585 + If another process deletes the opened mailbox, try to handle it
586 without writing errors to log file. Handles the most common cases.
587 + Added TLS support for LDAP if the library supports it.
588 - SEARCH command was more or less broken with OR and NOT conditions
589 - Dovecot corrupted mbox files which had CR+LF linefeeds in headers
590 - MySQL code could have crashed while escaping strings
591 - MD4 code with NTLM authentication was broken with 64bit systems.
592 Patch by Andrey Panin
593 - Plugin loading was broken in some OSes (eg. FreeBSD)
594 - Several fixes to handling empty values in configuration file
595 - Several fixes to dictionary quota backend and dict server.
596 Also changed how they're configured.
597 - deliver: Fixed plugin handling settings
598 - mbox_min_index_size handling was somewhat broken
599 - passdb passwd-file: extra_args field wasn't read unless the file
600 was also used as userdb.
601
602 v1.0.beta9 2006-06-13 Timo Sirainen <tss@iki.fi>
603
604 * PAM: Don't call pam_setcred() unless setcred=yes PAM passdb
605 argument was given.
606 * Moved around settings in dovecot-example.conf to be in more logical
607 groups.
608
609 + Local delivery agent (deliver binary) works again.
610 + LDAP: Added support for SASL binding. Patch by Geert Jansen
611 + ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log
612 invalid sent certificates. If verbose_ssl=yes, log even the valid
613 certificates. When using the username from the certificate, use
614 CommonName. Based on patch by HenkJan Wolthuis
615 + PAM: Set PAM_TTY which is needed by some PAM plugins
616 + dovecot --exec-mail ext <binary path> can now be used to start
617 binaries which want dovecot.conf to be read, for example the
618 convert-tool.
619 - Expunging needed to be done twice if client used STORE +FLAGS.SILENT
620 command to set the \Deleted flags
621 - Added sql_escape_string() to lib-sql API and use it instead of
622 normal \-escaping.
623 - ACL plugin fixes
624 - DIGEST-MD5: Trying to use subsequent authentication crashed
625 dovecot-auth.
626 - Fetching BODY when BODYSTRUCTURE was already cached caused the
627 reply to be broken in some cases
628 - Lots of fixes for index file handling
629 - dbox fixes and changes
630 - mbox syncing broke if some extraneous/broken headers were removed
631 (eg. extra X-IMAPbase headers in mails)
632 - Running Dovecot from inetd work now properly with POP3
633 - Quota plugin fixes for calculating the quota correctly
634
635 v1.0.beta8 2006-05-12 Timo Sirainen <tss@iki.fi>
636
637 * Fixed a security hole with mbox: "1 LIST .. *" command could
638 list all directories and files under the mbox root directory, so
639 if your mails were stored in eg. /var/mail/%u/ directory, the
640 command would list everything under /var/mail.
641
642 + Unless nfs_check=no or mmap_disable=yes, check for the first login
643 if the user's index directory exists in NFS mount. If so, refuse to
644 run. This is done only on first login to avoid constant extra
645 overhead.
646 + If we have plugins set and imap_capability unset, figure out the
647 IMAP capabilities automatically by running imap binary at startup.
648 The generated capability list isn't updated until Dovecot is
649 restarted completely, so if you add or remove IMAP plugins you
650 should restart. If you have problems related to this, set
651 imap_capabilities setting manually to work around it.
652 + Added auth_username_format setting
653 - pop3_lock_session setting wasn't really working
654 - Lots of fixes related to quota handling. It's still not working
655 perfectly though.
656 - Lots of index handling fixes, especially with mmap_disable=yes
657 - Maildir: saving mails could have sometimes caused "Append with UID
658 n, but next_uid = m" errors
659 - flock() locking never timeouted because ignoring SIGALRM caused the
660 system call just to be restarted when SIGALRM occurred (probably not
661 with all OSes though?)
662 - kqueue: Fixed "Unrecognized event". Patch by Vaclav Haisman
663
1 v1.0.beta7 2006-04-12 Timo Sirainen <tss@iki.fi> 664 v1.0.beta7 2006-04-12 Timo Sirainen <tss@iki.fi>
2 665
3 + Added shutdown_clients setting to control if existing imap/pop3 666 + Added shutdown_clients setting to control if existing imap/pop3
4 processes should be killed when master is. 667 processes should be killed when master is.
5 - Master login fixes, PLAIN authentication was still broken.. 668 - Master login fixes, PLAIN authentication was still broken..