release_notes

< linux网络编程工具>>配套源码

			'w' under FreeBSD (and possibly others).  From Jun
			Kuriyama of IMG SRC, Inc. and the FreeBSD Project.
		Replace code for finding the number of CPUs on HPUX.
		NCRUNIX MP-RAS 3.02 SO_REUSEADDR socket option does not
			work properly causing problems if the accept()
			fails and the socket needs to be reopened.  Patch
			from Tom Moore of NCR.
		NetBSD uses a .0 extension of formatted man pages.  From
			Andrew Brown of Crossbar Security.
		Return to using the IPv6 AI_DEFAULT flag instead of AI_V4MAPPED
			for calls to getipnodebyname().  The Linux
			implementation is broken so AI_ADDRCONFIG is stripped
			under Linux.  From John Beck of Sun Microsystems and
			John Kennedy of Cal State University, Chico.
	CONFIG: Catch invalid addresses containing a ',' at the wrong place.
		Patch from Neil Rickert of Northern Illinois University.
	CONFIG: New variables for the new sendmail options:
		confCACERT_PATH			CACERTPath
		confCACERT			CACERTFile
		confCLIENT_CERT			ClientCertFile
		confCLIENT_KEY			ClientKeyFile
		confDH_PARAMETERS		DHParameters
		confRAND_FILE			RandFile
		confSERVER_CERT			ServerCertFile
		confSERVER_KEY			ServerKeyFile
	CONFIG: Provide basic rulesets for TLS policy control and add new
		tags to the access database to support these policies.  See
		cf/README for more information.
	CONFIG: Add TLS information to the Received: header.
	CONFIG: Call tls_client ruleset from check_mail in case it wasn't
		called due to a STARTTLS command.
	CONFIG: If TLS_PERM_ERR is defined, TLS related errors are permanent
		instead of temporary.
	CONFIG: FEATURE(`relay_hosts_only') didn't work in combination with
		the access map and relaying to a domain without using a To:
		tag.  Problem noted by Mark G. Thomas of Mark G. Thomas
		Consulting.
	CONFIG: Set confEBINDIR to /usr/sbin to match the devtools entry in
		OSTYPE(`linux') and OSTYPE(`mklinux').  From Tim Pierce of
		RootsWeb.com.
	CONFIG: Make sure FEATURE(`nullclient') doesn't use aliasing and
		forwarding to make it as close to the old behavior as
		possible.  Problem noted by George W. Baltz of the
		University of Maryland.
	CONFIG: Added OSTYPE(`darwin') for Mac OS X and Darwin users.  From
		Wilfredo Sanchez of Apple Computer, Inc.
	CONFIG: Changed the map names used by FEATURE(`ldap_routing') from
		ldap_mailhost and ldap_mailroutingaddress to ldapmh and
		ldapmra as underscores in map names cause problems if
		underscore is in OperatorChars.  Problem noted by Bob Zeitz
		of the University of Alberta.
	CONFIG: Apply blacklist_recipients also to hosts in class {w}.
		Patch from Michael Tratz of Esosoft Corporation.
	CONFIG: Use A=TCP ... instead of A=IPC ... in SMTP mailers.
	CONTRIB: Add link_hash.sh to create symbolic links to the hash
		of X.509 certificates.
	CONTRIB: passwd-to-alias.pl:  More protection from special characters;
		treat special shells as root aliases; skip entries where the
		GECOS full name and username match.  From Ulrich Windl of the
		Universitat Regensburg.
	CONTRIB: qtool.pl: Add missing last_modified_time method and fix a
		typo.  Patch from Graeme Hewson of Oracle.
	CONTRIB: re-mqueue.pl: Improve handling of a race between re-mqueue
		and sendmail.  Patch from Graeme Hewson of Oracle.
	CONTRIB: re-mqueue.pl: Don't exit(0) at end so can be called as
		subroutine Patch from Graeme Hewson of Oracle.
	CONTRIB: Add movemail.pl (move old mail messages between queues by
		calling re-mqueue.pl) and movemail.conf (configuration
		script for movemail.pl).  From Graeme Hewson of Oracle.
	CONTRIB: Add cidrexpand (expands CIDR blocks as a preprocessor to
		makemap).  From Derek J. Balling of Yahoo,Inc.
	DEVTOOLS: INSTALL_RAWMAN installation option mistakenly applied any
		extension modifications (e.g., MAN8EXT) to the installation
		target.  Patch from James Ralston of Carnegie Mellon
		University.
	DEVTOOLS: Add support for SunOS 5.9.
	DEVTOOLS: New option confLN contains the command used to create
		links.
	LIBSMDB: Berkeley DB 2.X and 3.X errors might be lost and not
		reported.
	MAIL.LOCAL: DG/UX portability.  Problem noted by Tim Boyer of
		Denman Tire Corporation.
	MAIL.LOCAL: Prevent a possible DoS attack when compiled with
		-DCONTENTLENGTH.  Based on patch from 3APA3A@SECURITY.NNOV.RU.
	MAILSTATS: Fix usage statement (-p and -o are optional).
	MAKEMAP: Change man page layout as workaround for problem with nroff
		and -man on Solaris 7.  Patch from Larry Williamson.
	RMAIL: AIX 4.3 has snprintf().  Problem noted by David Hayes of
		Black Diamond Equipment, Limited.
	RMAIL: Prevent a segmentation fault if the incoming message does not
		have a From line.
	VACATION: Read all of the headers before deciding whether or not
		to respond instead of stopping after finding recipient.
	Added Files:
		cf/ostype/darwin.m4
		contrib/cidrexpand
		contrib/link_hash.sh
		contrib/movemail.conf
		contrib/movemail.pl
		devtools/OS/SunOS.5.9
		test/t_snprintf.c

8.10.2/8.10.2	2000/06/07
	SECURITY: Work around broken Linux setuid() implementation.
		On Linux, a normal user process has the ability to subvert
		the setuid() call such that it is impossible for a root
		process to drop its privileges.  Problem noted by Wojciech
		Purczynski of elzabsoft.pl.
	SECURITY: Add more vigilance around set*uid(), setgid(), setgroups(),
		initgroups(), and chroot() calls.
	Added Files:
		test/t_setuid.c

8.10.1/8.10.1	2000/04/06
	SECURITY: Limit the choice of outgoing (client-side) SMTP
		Authentication mechanisms to those specified in
		AuthMechanisms to prevent information leakage.  We do not
		recommend use of PLAIN for outgoing mail as it sends the
		password in clear text to possibly untrusted servers.  See
		cf/README's DefaultAuthInfo section for additional information.
	Copy the ident argument for openlog() to avoid problems on some
		OSs.  Based on patch from Rob Bajorek from Webhelp.com.
	Avoid bogus error message when reporting an alias line as too long.
	Avoid bogus socket error message if sendmail.cf version level is
		greater than sendmail binary supported version.  Patch
		from John Beck of Sun Microsystems.
	Prevent a malformed ruleset (missing right hand side) from causing
		a segmentation fault when using address test mode.  Based on
		patch from John Beck of Sun Microsystems.
	Prevent memory leak from use of NIS maps and yp_match(3).  Problem
		noted by Gil Kloepfer of the University of Texas at Austin.
	Fix queue file permission checks to allow for TrustedUser ownership.
	Change logging of errors from the trust_auth ruleset to LogLevel 10
		or higher.
	Avoid simple password cracking attacks against SMTP AUTH by using
		exponential delay after too many tries within one connection.
	Encode an initial empty AUTH challenge as '=', not as empty string.
	Avoid segmentation fault on EX_SOFTWARE internal error logs.
		Problem noted by Allan E Johannesen of Worcester
		Polytechnic Institute.
	Ensure that a header check which resolves to $#discard actually
		discards the message.
	Emit missing value warnings for aliases with no right hand side
		when newaliases is run instead of only when delivery is
		attempted to the alias.
	Remove AuthOptions missing value warning for consistency with other
		flag options.
	Portability:
		SECURITY: Specify a run-time shared library search path for
			AIX 4.X instead of using the dangerous AIX 4.X
			linker semantics.  AIX 4.X users should consult
			sendmail/README for further information.  Problem
			noted by Valdis Kletnieks of Virginia Tech.
		Avoid use of strerror(3) call.  Problem noted by Charles
			Levert of Ecole Polytechnique de Montreal.
		DGUX requires -lsocket -lnsl and has a non-standard install
			program.  From Tim Boyer of Denman Tire Corporation.
		HPUX 11.0 has a broken res_search() function.
		Updates to devtools/OS/NeXT.3.X, NeXT.4.X, and NEXTSTEP.4.X
			from J. P. McCann of E I A.
		Digital UNIX/Compaq Tru64 5.0 now includes snprintf(3).
			Problem noted by Michael Long of Info Avenue Internet
			Services, LLC.
		Modern (post-199912) OpenBSD versions include working
			strlc{at,py}(3) functions.  From Todd C. Miller of
			Courtesan Consulting.
		SINIX doesn't have random(3).  From Gerald Rinske of
			Siemens Business Services.
	CONFIG: Change error message about unresolvable sender domain to
		include the sender address.  Proposed by Wolfgang Rupprecht
		of WSRCC.
	CONFIG: Fix usenet mailer calls.
	CONFIG: If RELAY_MAILER_FLAGS is not defined, use SMTP_MAILER_FLAGS
		to be backward compatible with 8.9.
	CONFIG: Change handling of default case @domain for virtusertable
		to allow for +*@domain to deal with +detail.
	CONTRIB: Remove converting.sun.configs -- it is obsolete.
	DEVTOOLS: confUBINMODE was being ignored.  Fix from KITAZIMA, Tuneki
		of NEC.
	DEVTOOLS: Add to NCR platform list and include the architecture
		(i486).  From Tom J. Moore of NCR.
	DEVTOOLS: SECURITY: Change method of linking with sendmail utility
		libraries to work around the AIX 4.X and SunOS 4.X linker's
		overloaded -L option.  Problem noted by Valdis Kletnieks of
		Virginia Tech.
	DEVTOOLS: configure.sh was overriding the user's choice for
		confNROFF.  Problem noted by Glenn A. Malling of Syracuse
		University.
	DEVTOOLS: New variables conf_prog_LIB_POST and confBLDVARIANT added
		for other internal projects but included in the open source
		release.
	LIBSMDB: Check for ".db" instead of simply "db" at the end of the
		map name to determine whether or not to add the extension.
		This fixes makemap when building the userdb file.  Problem
		noted by Andrew J Cole of the University of Leeds.
	LIBSMDB: Allow a database to be opened for updating and created if
		it doesn't already exist.  Problem noted by Rand Wacker of
		Sendmail.
	LIBSMDB: If type is SMDB_TYPE_DEFAULT and both NEWDB and NDBM are
		available, fall back to NDBM if NEWDB open fails.  This
		fixes praliases.  Patch	from John Beck of Sun Microsystems.
	LIBSMUTIL: safefile()'s SFF_NOTEXCL check was being misinterpreted
		as SFF_NOWRFILES.
	OP.ME: Clarify some issues regarding mailer flags.  Suggested by
		Martin Mokrejs of The Charles University and Neil Rickert of
		Northern Illinois University.
	PRALIASES: Restore 8.9.X functionality of being able to search for
		particular keys in a database by specifying the keys on the
		command line.  Man page updated accordingly.  Patch from
		John Beck of Sun Microsystems.
	VACATION: SunOS 4.X portability from Charles Levert of Ecole
		Polytechnique de Montreal.
	VACATION: Fix -t option which is ignored but available for
		compatibility with Sun's version, based on patch from
		Volker Dobler of Infratest Burke.
	Added Files:
		devtools/M4/UNIX/smlib.m4
		devtools/OS/OSF1.V5.0
	Deleted Files:
		contrib/converting.sun.configs
	Deleted Directories (already done in 8.10.0 but not listed):
		doc/intro
		doc/usenix
		doc/changes

8.10.0/8.10.0	2000/03/01
	    *************************************************************
	    * The engineering department at Sendmail, Inc. has suffered *
	    * the tragic loss of a key member of our engineering team.  *
	    * Julie Van Bourg was the Vice President of Engineering     *
	    * at Sendmail, Inc. during the development and deployment   *
	    * of this release.  It was her vision, dedication, and      *
	    * support that has made this release a success.  Julie died *
	    * on October 26, 1999 of cancer.  We have lost a leader, a  *
	    * coach, and a friend.                                      *
	    *                                                           *
	    * This release is dedicated to her memory and to the joy,   *
	    * strength, ideals, and hope that she brought to all of us. *
	    * Julie, we miss you!                                       *
	    *************************************************************
	SECURITY: The safe file checks now back track through symbolic
		links to make sure the files can't be compromised due
		to poor permissions on the parent directories of the
		symbolic link target.
	SECURITY: Only root, TrustedUser, and users in class t can rebuild
		the alias map.  Problem noted by Michal Zalewski of the