diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2024-01-22 20:57:12 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2024-01-23 13:30:31 +0100 |
commit | 2bde1d73b5ae09f99f48ff7072b5d8ca5d759014 (patch) | |
tree | 9ad62c5b25822bb699778099b26f13a3ccd55418 /patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt | |
parent | 4e883273037a35e5e60bbbb34c2e8720dba2711f (diff) | |
download | current-7f199520204cd09b0e6fef6001c37d7b84fa2bd3.tar.gz current-7f199520204cd09b0e6fef6001c37d7b84fa2bd3.tar.xz |
Mon Jan 22 20:57:12 UTC 202420240122205712_15.0
patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txz: Upgraded.
Security (inbound SMTP smuggling): with "smtpd_forbid_bare_newline
= normalize" (default "no" for Postfix < 3.9), the Postfix
SMTP server requires the standard End-of-DATA sequence
<CR><LF>.<CR><LF>, and otherwise allows command or message
content lines ending in the non-standard <LF>, processing
them as if the client sent the standard <CR><LF>.
The alternative setting, "smtpd_forbid_bare_newline = reject"
will reject any command or message that contains a bare
<LF>, and is more likely to cause problems with legitimate
clients.
For backwards compatibility, local clients are excluded by
default with "smtpd_forbid_bare_newline_exclusions =
$mynetworks".
For more information, see:
https://www.postfix.org/smtp-smuggling.html
(* Security fix *)
Diffstat (limited to 'patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt')
-rw-r--r-- | patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt b/patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt new file mode 100644 index 000000000..277038a1f --- /dev/null +++ b/patches/packages/postfix-3.6.14-x86_64-1_slack15.0.txt @@ -0,0 +1,11 @@ +postfix: postfix (mail transport and submission agent) +postfix: +postfix: Postfix attempts to be fast, easy to administer, and secure, while at +postfix: the same time being sendmail compatible enough to not upset existing +postfix: users. Thus, the outside has a sendmail-ish flavor, but the inside is +postfix: completely different. +postfix: +postfix: Homepage: http://www.postfix.org +postfix: +postfix: +postfix: |