20
21
* --sslcertck may become a default setting in a future fetchmail version.
21
22
* The multidrop To/Cc guessing code along with the fragile duplicate suppressor
22
23
is deprecated and may be removed from a future release.
24
* The "envelope Received" option may be removed from a future release, because
25
the Received header was never meant to be machine-readable, the format varies
26
widely, and various other differences in behavior make parsing Received an
27
unreliable undertaking. The enveloper option as such will remain though, in
28
order to support Delivered-To, X-Envelope-To, X-Original-To and similar.
29
See also <http://home.pages.de/~mandree/mail/multidrop>.
23
30
* The --enable-fallback (fall back to MDA if MTA unavailable) may be removed
24
31
from a future fetchmail release.
25
32
* The "protocol auto" default inside fetchmail may be removed from a future
26
33
fetchmail release. Explicit configuration of the protocol is recommended.
34
* Kerberos IV support may be removed from a future fetchmail release.
35
* SIGHUP wakeup may be removed from a future fetchmail release and cause it
37
* Support for operating systems that are not sufficiently POSIX compliant may be
38
removed or operation on such systems may be suboptimal for future releases.
28
40
--------------------------------------------------------------------------------
30
fetchmail 6.3.4 (released 2006-04-14):
42
fetchmail 6.3.6 (not yet released):
44
# SECURITY FIX (CHANGES BEHAVIOR):
45
* Using at least one of the options "sslproto 'tls1'", "sslfingerprint" or
46
"sslcertck" enforces STARTTLS for POP3 and IMAP and terminates the connection
47
if unsuccessful. The same configuration causes permanent connection failure
48
with POP2, which is obsolete and does not support STLS. fetchmail 6.3.5 and
49
older had no way to enforce TLS. With those older versions, TLS was always
50
opportunistic, but fetchmail would happily transmit the password in cleartext
51
if STARTTLS failed. Reported by and fixed in cooperation with Isaac Wilcox.
53
Configurations using --ssl --sslcertck however have been safe.
56
* Repair regression in 6.3.5 that crashes fetchmail when a message with invalid
57
headers is found while fetchmail's mda option is in use. BerliOS bugs #9364,
58
#9412, #9449. Stack backtrace provided by Neil Hoggarth - thanks.
61
* Repair --logfile, broken in 6.3.5. BerliOS Bug #9059,
62
reported by Brian Harring.
63
* Robustness: If a stale lockfile cannot be deleted, truncate it to avoid
64
trouble later if the PID is recycled by a non-fetchmail process.
67
* New en_GB (British English) translation by David Lodge.
68
* Update Japanese (Takeshi Hamasaki), Polish (Jakub Bogusz) and Vietnamese
69
(Clytie Siddall) translations.
70
* Update (incompletely) Russian translation (Pavel Maryanov).
32
72
# KNOWN BUGS AND WORKAROUNDS:
33
73
(this section floats upwards through the NEWS to be on top of the list)
37
77
Either compile 32-bit code or use GCC to compile 64-bit fetchmail.
38
78
Note that fetchmail doesn't take advantage of 64-bit code anyways,
39
79
so compiling 32-bit SPARC code should be fine.
40
* The code still isn't 100% ISO-C compliant, some configurations attempt to
41
compile files that are empty after preprocessing, which can cause compiler
42
diagnostics and perhaps jam the compilation on strict compilers.
80
* fetchmail expects Received: headers in a particular format when parsing
82
* fetchmail does not track pending deletes over crashes
83
* the command line interface is a bit narrow-minded sometimes, for instance,
84
fetchmail -s doesn't work with a running daemon
85
* some of the logging output is not very helpful
86
* some of the documentation is still not up to date
88
fetchmail 6.3.5 (released 2006-10-09):
91
* For protocols such as IMAP that are not delimited by "." lines, truncate the
92
input buffer when the message has been completely read, to avoid taking
93
trailing garbage into the message if the terminal CRLF is missing. Fixes
94
Debian Bug#312415. (Patch suggested by Mike Jones, Manchester Univ.).
95
* When using NTLM authentication, use regular IMAP response code handler after
96
completing NTLM handshake, for robustness and consistency.
97
(Taken from the NetBSD portable packages collection, patch-ac.)
98
* Support Kerberos installations where krb5.h and perhaps roken.h are in
99
.../include/krb5. Taken from NetBSD portable packages collection patch-ae.
100
* On NetBSD, link against -lroken -lcom_err if --with-kerberos is enabled.
101
* Drop #include <com_err.h> from Kerberos 5 header file, fixes compile error on
103
* Fix des_pcbc_encrypt compile warnings in kerberos.c line 246.
104
* If krb5-config provides gssapi library information, use that rather than
106
* Improve --with-gssapi auto detection for /usr-based GSSAPI installs.
107
* Fix --with-gssapi builds for NetBSD 3.0.
108
* Improve KAME/getnameinfo.c portability to Linux libc5 systems.
109
Based on a patch by Dan Fandrich.
110
* Provide INET6 to KAME/getnameinfo.c (only useful on IPv6-enabled systems that
111
lack getnameinfo, and there only visible in some Received: headers).
112
Found by Dan Fandrich.
113
* POP3: some UID flags may not be set properly on UIDL lists. (Sunil Shetye)
114
* Make IMAP4 IDLE work on servers that do not update RECENT counts.
115
Reported by Lars Tewes.
116
* IMAP4 patch by Sunil Shetye:
117
- do not depend on server updating RECENT counts at all
118
- also enter IDLE loop when messages are present on the server.
119
* Fix --flush description in the manual page, fetchmail does not mark messages
120
seen unless it has successfully delivered them. Suggested by Frederic Marchal.
121
* Fetchmail no longer attempts to stat the "-" file in daemon mode -- this is a
122
special name to read the RC file from stdin, and cannot always be re-read
123
anyways. BerliOS bug #7858.
124
* When looking up ports for a service, the lookup succeeds and the returned
125
address family isn't IPv4 or IPv6, properly free the allocated memory from the
126
service lookup. Found by Uli Zappe.
127
* When looking up ports for a service, only look up TCP ports.
128
* Avoid compiling empty files, to avoid diagnostics from strict compilers.
129
* If the lockfile ends before the process ID, treat it as stale and unlink it.
130
Reported by Justin Pryzby, Debian Bug #376603.
131
* SIGHUP wake-up behavior was broken since 5.9.13's Cygwin changes, in that for
132
non-root users, SIGHUP would abort the first poll and subsequently interfere
133
with new polls, and SIGHUP would be ignored for root users. SIGHUP now matches
134
documented behavior. SIGUSR1 has always been a wakeup signal for both root
135
(undocumented) and non-root users. See also the deprecation warning above.
136
* Track getaddrinfo() results to properly free them after timeouts and make sure
137
that getaddrinfo() isn't interrupted by a timeout (which breaks on MacOS X),
138
reported by Uli Zappe. This should fix Debian Bug#294547 and Bug#377135.
139
* --logfile is now handled more carefully, errors opening the logfile are
140
now reported to the TTY where fetchmail was started from.
141
* fetchmail now complains and aborts when it cannot properly daemonize itself.
142
* fix compilation on systems that don't know struct addrinfo (Solaris 2.6).
143
* ignore SIGPIPE signals and rely on functions to return EPIPE instead. This is
144
necessary because the former longjmp() from the signal handler is unsafe and
145
makes the whole fetchmail behavior undefined after the event.
146
* Avoid crash in env.c/host_fqdn if we cannot canonicalize our own hostname.
147
Reported by Alexander Holler.
148
* SSL fix by Miloslav Trmac (Red Hat): free the SSL contexts after the
149
connection, to avoid from growing SSL certpaths without bounds, avoid using
150
SSL contexts for unrelated connections, and to fix Red Hat Bug #206346.
153
* Rename all fetchmail-internal lock_* functions to fm_lock_*. Obsoletes
154
NetBSD portable packages collection patch-ah, patch-ai and patch-aj.
155
* Configure prints a warning (but proceeds) if Kerberos IV support is enabled.
156
* In verbose mode, log every IP fetchmail tries to connect to, to avoid
157
misleading the user. Suppress EAFNOSUPPORT errors from socket() call, too.
158
Fixes Debian Bug #361825, reported by Daniel Baur.
159
* In idle mode, fetchmail complains about the fetchall option.
160
* When a connection fails, log not only the IP address, but also host and
161
service name and the port number. Log the latter when trying to connect in
163
* Keep syslog output at one line per message (this works if no errors occur).
164
* Fetchmail in verbose mode now logs if it opportunistically upgrades a POP3
165
or IMAP connection to TLS security with STLS/STARTTLS.
166
* fetchmail now supports foo@example.org=bar user mappings for multidrop boxes.
167
* switch setjmp/longjmp to sigsetjmp/siglongjmp
168
* IMAP now supports the EXTERNAL authentication method, courtesy of
169
Götz 'nimrill' Babin-Ebell, BerliOS patch #1095 with minor changes.
170
* The sslproto keywords are now case insensitive, courtesy of
171
Götz 'nimrill' Babin-Ebell, BerliOS patch #1095.
172
* When going to sleep, log for how long. Suggested by Claudia Ludwig.
173
* When the server name cannot be canonicalized, log the gai_strerror value.
175
# TRANSLATION UPDATES:
176
* Catalan/ca (Ernest Adrogué Calveras), Japanese/ja (Takeshi Hamasaki) - also
177
made gettext 0.15 ready, Polish/pl (Jakub Bogusz), Russian/ru (Pavel
178
Maryanov), Spanish/es (Héctor García Álvarez), Vietnamese/vi (Clytie Siddall)
180
# CONTRIBUTED SCRIPTS:
181
* PopDel.py was revised by Joshua Crawford to display the From: address and
182
list every email, even if it has no Subject: header; and not delete the wrong
183
message in the presence of mail without Subject: headers.
185
fetchmail 6.3.4 (released 2006-04-14):
45
188
* configure: detect res_* functions properly with newer glibc ABIs.