diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-12-23 02:48:56 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-12-23 04:30:41 +0100 |
commit | 2b78642fcc7ee3ea7d7cb8cc7cb750029f30cdae (patch) | |
tree | d53b16e8dedb949eec78c45ca27b5c89308a6ec4 /ChangeLog.rss | |
parent | 6011a48b2a96356beb8a567ee93b7fe8c87ace50 (diff) | |
download | current-2b78642fcc7ee3ea7d7cb8cc7cb750029f30cdae.tar.gz current-2b78642fcc7ee3ea7d7cb8cc7cb750029f30cdae.tar.xz |
Sat Dec 23 02:48:56 UTC 202320231223024856
a/glibc-zoneinfo-2023d-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
l/libsass-3.6.6-x86_64-1.txz: Upgraded.
n/postfix-3.8.4-x86_64-1.txz: Upgraded.
Security: this release adds support to defend against an email spoofing
attack (SMTP smuggling) on recipients at a Postfix server. Sites
concerned about SMTP smuggling attacks should enable this feature on
Internet-facing Postfix servers. For compatibility with non-standard
clients, Postfix by default excludes clients in mynetworks from this
countermeasure.
The recommended settings are:
# Optionally disconnect remote SMTP clients that send bare newlines,
# but allow local clients with non-standard SMTP implementations
# such as netcat, fax machines, or load balancer health checks.
#
smtpd_forbid_bare_newline = yes
smtpd_forbid_bare_newline_exclusions = $mynetworks
The smtpd_forbid_bare_newline feature is disabled by default.
For more information, see:
https://www.postfix.org/smtp-smuggling.html
(* Security fix *)
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r-- | ChangeLog.rss | 35 |
1 files changed, 33 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index d00067291..3a1bc6477 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,41 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Thu, 21 Dec 2023 20:46:11 GMT</pubDate> - <lastBuildDate>Thu, 21 Dec 2023 21:29:58 GMT</lastBuildDate> + <pubDate>Sat, 23 Dec 2023 02:48:56 GMT</pubDate> + <lastBuildDate>Sat, 23 Dec 2023 03:30:36 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.17</generator> <item> + <title>Sat, 23 Dec 2023 02:48:56 GMT</title> + <pubDate>Sat, 23 Dec 2023 02:48:56 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20231223024856</link> + <guid isPermaLink="false">20231223024856</guid> + <description> + <![CDATA[<pre> +a/glibc-zoneinfo-2023d-noarch-1.txz: Upgraded. + This package provides the latest timezone updates. +l/libsass-3.6.6-x86_64-1.txz: Upgraded. +n/postfix-3.8.4-x86_64-1.txz: Upgraded. + Security: this release adds support to defend against an email spoofing + attack (SMTP smuggling) on recipients at a Postfix server. Sites + concerned about SMTP smuggling attacks should enable this feature on + Internet-facing Postfix servers. For compatibility with non-standard + clients, Postfix by default excludes clients in mynetworks from this + countermeasure. + The recommended settings are: + # Optionally disconnect remote SMTP clients that send bare newlines, + # but allow local clients with non-standard SMTP implementations + # such as netcat, fax machines, or load balancer health checks. + # + smtpd_forbid_bare_newline = yes + smtpd_forbid_bare_newline_exclusions = $mynetworks + The smtpd_forbid_bare_newline feature is disabled by default. + For more information, see: + https://www.postfix.org/smtp-smuggling.html + (* Security fix *) + </pre>]]> + </description> + </item> + <item> <title>Thu, 21 Dec 2023 20:46:11 GMT</title> <pubDate>Thu, 21 Dec 2023 20:46:11 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20231221204611</link> |