"Fossies" - the Fresh Open Source Software Archive

Member "msmtp-1.8.5/NEWS" (12 Jul 2019, 18967 Bytes) of package /linux/privat/msmtp-1.8.5.tar.xz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. See also the latest Fossies "Diffs" side-by-side code changes report for "NEWS": 1.8.4_vs_1.8.5.

    1 Version 1.8.5:
    2 - Fixed OAUTHBEARER.
    3 - Support for TLS client certificates via PKCS11 devices, e.g. smart cards.
    4 - Various small bug fixes and improvements.
    5 
    6 Version 1.8.4:
    7 - Added support for the OAUTHBEARER authentication method.
    8 - Several minor bug fixes.
    9 
   10 Version 1.8.3:
   11 - This version fixes a security problem that affects version 1.8.2 (older
   12   versions are not affected): when the new default value system for
   13   tls_trust_file is used, the result of certificate verification was not
   14   properly checked.
   15 
   16 Version 1.8.2:
   17 - To simplify TLS setup, the tls_trust_file command has a new default value
   18   'system' that selects the system default trust. Now you just need tls=on to
   19   use TLS; the other TLS options are only required in special cases.
   20   To make this work without breaking compatibility with older msmtp versions,
   21   tls_fingerprint now overrides tls_trust_file, and tls_certcheck=off overrides
   22   both (previously, you could not specify contradicting options).
   23 - To simplify setup, a new option '--configure <mailaddress>' was added that
   24   automatically generates a configuration file for a given mail address.
   25   However, this only works if the mail domain publishes appropriate SRV records.
   26 
   27 Version 1.8.1:
   28 - Fixed our TLS code to support TLS 1.3 with GnuTLS.
   29 
   30 Version 1.8.0:
   31 - A minimal SMTP server called msmtpd was added that listens on the local host
   32   and pipes mails to msmtp (or another program). It is intended to be used with
   33   system services that cannot be configured to call msmtp directly. You can
   34   disable it with the configure option --without-msmtpd.
   35 - Using OpenSSL is discouraged and may not be supported in the future. Please
   36   use GnuTLS instead. The reasons are explained here:
   37   https://marlam.de/msmtp/news/openssl-discouraged/
   38 - As using GNU SASL is most likely unnecessary, it is disabled by default now.
   39   Since everything uses TLS nowadays and thus can use PLAIN authentication, you
   40   really only need it for GSSAPI.
   41 - If your system requires a library for IDN support, libidn2 is now used instead
   42   of the older libidn.
   43 - The CRAM-MD5 authentication method is marked as obsolete / insecure and will
   44   not be chosen automatically anymore.
   45 - The passwordeval command does not require the password to be terminated by a
   46   new line character anymore.
   47 - The new logfile_time_format command allows to customize log file time stamps.
   48 - Builtin default port numbers are now used instead of consulting /etc/services.
   49 - Support for DJGPP and for systems lacking vasprintf(), mkstemp(), or tmpfile()
   50   is removed.
   51 
   52 Version 1.6.8:
   53 - Add --source-ip option and source_ip command to bind the outgoing connection
   54   to a specific source IP address.
   55 - Enable SNI for TLS
   56 
   57 Version 1.6.7:
   58 - Add support for ~/.config/msmtp/config as configuration file
   59 - Add network timeout handling on Windows
   60 - Fix command line handling of SHA256 TLS fingerprints
   61 - Fix SIGPIPE handling (affects at least Mac OS X)
   62 - Add french translation, and update german translation
   63 
   64 Version 1.6.6:
   65 - Fix a memory leak and a double-free in msmtp_read_headers(), triggered by read
   66   errors.
   67 
   68 Version 1.6.5:
   69 - Support SHA256 fingerprints for tls_fingerprint, and mark both SHA1 and MD5 as
   70   deprecated.
   71 
   72 Version 1.6.4:
   73 - The system default policy is used with GnuTLS instead of a hardcoded one.
   74 
   75 Version 1.6.3:
   76 - A bug in SOCKS support was fixed.
   77 - Handling non-fatal errors in TLS handshakes was fixed.
   78 
   79 Version 1.6.2:
   80 - A bug was fixed that prevented consecutive Bcc headers from being removed
   81   properly.
   82 
   83 Version 1.6.1:
   84 - The new configure option --with-tls replaces --with-ssl.
   85 - A new configure option --disable-gai-idn was added.
   86 
   87 Version 1.6.0:
   88 - Support for SOCKS proxies was added. This allows msmtp to be used with Tor.
   89 - GNOME Keyring support now uses libsecret instead of libgnome-keyring. It is
   90   now documented how to use secret-tool to manage passwords for msmtp; the
   91   obsolete msmtp-gnome-tool script is removed.
   92 - Configuration file security is now only checked if the file actually contains
   93   secrets such as passwords. (If you still store passwords in the configuration
   94   file, consider using the passwordeval command or a key ring instead.)
   95 - The GSSAPI authentication method is not chosen automatically anymore, you have
   96   to request it manually if you really want to use it.
   97 - From: and Date: headers are now added to mails if necessary, for compatibility
   98   with sendmail, postfix, exim, and other MTAs. This can be disabled with the
   99   add_missing_from_header and add_missing_date_header commands.
  100 - Libidn is not required for IDN support anymore on systems where getaddrinfo()
  101   supports the AI_IDN flag and the GnuTLS version is >= 3.4.0.
  102 - The new remove_bcc_headers command replaces the old keepbcc command (but the
  103   old command is still supported for compatibility).
  104 - SSLv3 is disabled, and the obsolete tls_force_sslv3 command and
  105   --tls-force-sslv3 option have no effect anymore.
  106 
  107 Version 1.4.32:
  108 - A recipient list on the command line is now parsed as if it appeared in a
  109   mail header.
  110 
  111 Version 1.4.31:
  112 - No significant changes.
  113 
  114 Version 1.4.30:
  115 - No significant changes.
  116 
  117 Version 1.4.29:
  118 - The obsolete service name "ssmtp" was replaced with "smtps".
  119 
  120 Version 1.4.28:
  121 - No significant changes.
  122 
  123 Version 1.4.27:
  124 - No significant changes.
  125 
  126 Version 1.4.26:
  127 - A new version of the msmtpq script fixes serious bugs. To update to the new
  128   version of the script, you need to remove the old msmtpQ symlink, change
  129   msmtpQ to msmtpq in your MUA config, and use msmtp-queue for queue management.
  130 
  131 Version 1.4.25:
  132 - DIGEST-MD5 authentication is not considered secure any longer. See RFC 6331.
  133 - Support for alias expansion was added. See the aliases command and --aliases
  134   option.
  135 
  136 Version 1.4.24:
  137 - The build system was updated, and as a consequence some options to the
  138   configure script have changed. See './configure --help'.
  139 - The license of the manual was changed from the GNU FDL to a very simple
  140   permissive license.
  141 - The unmaintained pt_BR translation was removed.
  142 
  143 Version 1.4.23:
  144 - No significant changes.
  145 
  146 Version 1.4.22:
  147 - A new command 'passwordeval' with a corresponding '--passwordeval' option
  148   allows to set the password to the output of a command.
  149 
  150 Version 1.4.21:
  151 - No significant changes.
  152 
  153 Version 1.4.20:
  154 - Added support for authentication mechanism SCRAM-SHA-1 via GNU SASL.
  155 - The new command tls_fingerprint allows one to trust one particular TLS
  156   certificate, in case tls_trust_file cannot be used for some reason.
  157 - The new script msmtp-gnome-tool.py manages Gnome Keyring passwords for msmtp.
  158 
  159 Version 1.4.19:
  160 - When using OpenSSL, msmtp now correctly handles NUL characters in the Common
  161   Name and Subject Alternative Name fields of certificates. This fixes a 
  162   security problem. Note that msmtp is not affected by this problem if GnuTLS is
  163   used.
  164 
  165 Version 1.4.18:
  166 - No significant changes.
  167 
  168 Version 1.4.17:
  169 - Msmtp now also reads SYSCONFDIR/netrc if the password was not found in 
  170   ~/.netrc.
  171 - Support for the GNOME keyring was added by Satoru SATOH.
  172 
  173 Version 1.4.16:
  174 - No significant changes.
  175 
  176 Version 1.4.15:
  177 - The configuration command tls_crl_file was added. This allows to use 
  178   certificate revocation lists (CRLs) during certificate verification.
  179 - The configuration command tls_min_dh_prime_bits was added. This may be needed
  180   to use TLS/SSL with servers that use a small Diffie-Hellman (DH) prime size.
  181 - The configuration command tls_priorities was added. This allows to fine tune 
  182   TLS/SSL session parameters.
  183 
  184 Version 1.4.14: 
  185 - The -t option now properly supports Resent-* headers.
  186 - The --read-envelope-from option was added. It allows to read the envelope from
  187   address from the From header.
  188 - The environment variables SMTPSERVER and EMAIL can be used to configure msmtp
  189   for simple use cases.
  190 - Support for the Mac OS X keychain was added by Jay Soffian.
  191 
  192 Version 1.4.13: 
  193 - Useful scripts are now distributed in the scripts subdirectory.
  194 - The license was updated to GPLv3 or later (source code) and GFDLv1.2 or later
  195   (documentation).
  196 
  197 Version 1.4.12: 
  198 - No significant changes.
  199 
  200 Version 1.4.11: 
  201 - Security improvements:
  202   - TLS requires tls_trust_file or a disabled tls_certcheck now, so that it is 
  203     not silently vulnerable to man-in-the-middle attacks.
  204   - NTLM authentication is considered insecure because it is undocumented. It is
  205     therefore not used automatically without TLS anymore.
  206 
  207 Version 1.4.10:
  208 - No significant changes.
  209 
  210 Version 1.4.9:
  211 - No significant changes.
  212 
  213 Version 1.4.8:
  214 - No significant changes.
  215 
  216 Version 1.4.7:
  217 - The configuration command tls_force_sslv3 was added. This is needed to use
  218   TLS/SSL with some old and broken servers.
  219 
  220 Version 1.4.6:
  221 - The options to the configure script have changed! See the first few
  222   paragraphs of INSTALL for details.
  223 - Optional support for Internationalized Domain Names (IDN) was added. 
  224   GNU Libidn is required for this.
  225 
  226 Version 1.4.5:
  227 - Only minor tweaks.
  228 
  229 Version 1.4.4:
  230 - Support for the sendmail -F option (accepted but ignored).
  231 - Removed the OpenSSL exception note from the license information.
  232 
  233 Version 1.4.3:
  234 - Automatic envelope-from addresses are only generated when auto_from is enabled
  235   with the new auto_from command or --auto-from option.
  236   This allow empty envelope from addresses to be set with the from command or 
  237   --from option.
  238 
  239 Version 1.4.2:
  240 - The 'connect_timeout' setting was replaced by a 'timeout' setting that applies
  241   to all network operations. The old option and command are still accepted, but 
  242   they are not restricted to connection attempts anymore.
  243 - Native language support (NLS) was added. Currently the only supported language
  244   besides english is german, but it is easy to add more translations (hint, 
  245   hint)!
  246 
  247 Version 1.4.1:
  248 - Only bug fixes, no new features.
  249 
  250 Version 1.4.0:
  251 - This is the new stable release of msmtp.
  252   BEWARE: When upgrading from 1.2.4, note that
  253   - Authentication is not enabled automatically anymore! Insert the command
  254     "auth on" into account definitions that need it.
  255   - Some command line options have changed!
  256 - Summary of new features since 1.2.4:
  257   - Sendmail compatible command line options, including -t, -N, and -R
  258   - New long options to configure almost everything on the command line
  259   - Optional account selection with -f/--from
  260   - Support for a system wide configuration file
  261   - Optional automatic construction of envelope from addresses
  262   - More flexible account definitions
  263   - Configurable connection timeouts
  264   - Improved log file logging
  265   - Syslog logging
  266   - Improved TLS/SSL support
  267   - Support for LMTP
  268   - Support for the EXTERNAL and GSSAPI authentication methods
  269   - Support for .netrc and password prompting
  270   - Rewritten documentation, available in various formats
  271 - New since 1.3.9:
  272   - No new features, but minor improvements mainly regarding interoperability
  273     and performance. And some minor bug fixes.
  274 
  275 Version 1.3.9:
  276 - Added support for the .netrc file: If a password is needed but none is given, 
  277   msmtp will try to find it in ~/.netrc, and if that fails, msmtp will prompt 
  278   you for it.
  279 - The authentication user name is included in the log if authentication is used.
  280   Suggested by Jim Fohlin.
  281 - An account from the system configuration file cannot be partially changed in
  282   the user configuration file anymore; it must be replaced completely instead.
  283 - Added LMTP support.
  284 
  285 Version 1.3.8:
  286 - The default values from a defaults section in a system configuration file
  287   are not valid in the user configuration file anymore, to prevent changes in 
  288   the system configuration file from breaking user setups.
  289 
  290 Version 1.3.7:
  291 - The user configuration file is required to have no more permissions than 
  292   0600 (user read/write).
  293 - Added specialisation to account definitions. See documentation of the
  294   account command and the example files.
  295 - Added the new connect_timeout command and --connect-timeout option.
  296 - The password will be prompted for if none is given in the configuration file.
  297 
  298 Version 1.3.6:
  299 - New documentation!
  300   It was rewritten using texinfo, which allows easy generation of html and pdf
  301   documents.
  302   The man page is still up to date and will not be dropped.
  303 - A new configuration file command ("defaults") to set default values for all 
  304   following accounts was added. Suggested by Jim Fohlin.
  305 - Support for EXTERNAL authentication was added.
  306 - You need GnuTLS >= 1.2.0 now if you want GnuTLS support.
  307 - bug fixes!
  308 
  309 Version 1.3.5:
  310 - A system wide configuration file SYSCONFDIR/msmtprc will be used if it exists.
  311   It's settings will be overridden by the the user configuration file.
  312   Use the --sysconfdir configure option to set SYSCONFDIR to something other 
  313   than /usr/local/etc.
  314 - If no envelope from address is given, msmtp will construct one using the user
  315   name and the mail domain (if given).
  316 - New command/options pairs:
  317   - maildomain/--maildomain to set the domain part of constructed envelope from
  318     addresses
  319   - syslog/--syslog to enable logging to syslog
  320 
  321 Version 1.3.4:
  322 - Just some cleanups and bugfixes. The built-in CRAM-MD5 code works again.
  323 
  324 Version 1.3.3:
  325 - support for Remote Message Queue Starting (RMQS) was added, see option --rmqs
  326 - msmtp can now print information about the peer's TLS certificate.
  327   Use --serverinfo (or --debug) to see it
  328 - If you want GnuTLS as your TLS library, you need a version >= 1.1.23 now
  329 
  330 Version 1.3.2:
  331 - You need gsasl or libgsasl >= 0.2.4 if you want GNU SASL support
  332 - Various bugfixes
  333 
  334 Version 1.3.1:
  335 - fixed the -t option
  336 
  337 Version 1.3.0:
  338 - INCOMPATIBLE CHANGES:
  339   - configuration file:
  340     - The auth command is now *required* to activate authentication. Just 
  341       setting user name and password is not enough anymore
  342     - The tls_nostarttls command should be changed to "tls_starttls off",
  343       though the old command is still supported
  344     - The tls_nocertcheck command should be changed to "tls_certcheck off",
  345       though the old command is still supported
  346   - command line:
  347     - Changed short options (because of collision with sendmail options):
  348       -p is now -P
  349       -F is now -C
  350       -v is not available anymore, use --version
  351       -h is not available anymore, use --help
  352     - If you used -f/--from without -a/--account to override the envelope from
  353       address of the default account, you have to use --account=default 
  354       explicitly now, because otherwise msmtp tries to find an account matching
  355       the from address
  356 - NEW FEATURES:
  357   - Sendmail compatible interface
  358   - Almost all options can now be set on the command line
  359   - Support for the sendmail -t option (read additional recipient addresses 
  360     from the To, Cc, and Bcc headers of the mail)
  361   - You can choose the account using the -f/--from option:
  362     If you use -f/--from but not -a/--account, the first account of the
  363     configuration file that has a matching envelope from address will be used
  364   - GSSAPI authentication (you need GNU SASL >= 0.2.3 with GSSAPI support)
  365   - New command ntlmdomain to set the domain parameter for NTLM authentication
  366 - CHANGES:
  367   - Long option support on all platforms (thanks to gnulib)
  368   - Enhanced almost all commands to allow unsetting of features
  369   - Changed log file information: Instead of conffile/account, log
  370     information about host, tls, auth, and from.
  371 
  372 Version 1.2.4:
  373 - No new features.
  374 
  375 Version 1.2.3:
  376 - IPv6 support on Windows systems
  377 - The configuration file supports all commands and arguments related to
  378   TLS and authentication, even if TLS and/or GNU SASL support is not 
  379   compiled in
  380 - The GNU SASL library is not required to support DIGEST-MD5 and NTLM 
  381   anymore. This means you can now use the packaged versions of the library 
  382   from Gentoo or Debian sarge.
  383 - You can use the -v/--version option to find out which authentication
  384   methods are supported.
  385 
  386 Version 1.2.2:
  387 - Enhancements to the logfile command:
  388   - All available information is now written to the logfile (new fields: 
  389     mailsize=..., smtpmsg='...', errormsg='...').
  390   - Logging to standard output is possible by using "logfile -"
  391 
  392 Version 1.2.1:
  393 - No new features.
  394 
  395 Version 1.2.0:
  396 - This version can be compiled without TLS/SSL support; use 
  397   --disable-ssl if you really want that.
  398 - Read the entries for versions 1.1.x for more changes since the last 
  399   stable version 1.0.0.
  400 
  401 Version 1.1.3:
  402 - New option -i for compatibility with mail(1).
  403 - New 'logfile' command; see man page for details.
  404 
  405 Version 1.1.2:
  406 - No user visible changes.
  407 
  408 Version 1.1.1:
  409 - The tls_nostarttls command now sets the default port to 465 (ssmtp).
  410 
  411 Version 1.1.0:
  412 - Support for SMTP command pipelining. On high latency networks, this 
  413   may increase transmission speed, especially when sending to many
  414   recipients.
  415 - The short option for --file, -f, has changed to -F
  416 - A new option --from/-f is available to set the envelope from address.
  417 - A new option --serverinfo/-S is available to print information
  418   about the capabilities and limitations of an SMTP server
  419 
  420 Version 1.0.0:
  421 - New feature: tilde expansion for filenames in the configuration file
  422 
  423 Version 0.7.2:
  424 - This version adds native support for Windows 9x/ME/NT/2000/XP/2003
  425   (with MinGW) and DOS (with DJGPP and the Watt32 library).
  426 
  427 Version 0.7.1:
  428 - New command: 'domain'
  429 - New options: --pretend and --debug
  430 
  431 Version 0.7.0:
  432 - Support for DSN (Delivery Status Notifications) was added via
  433   the new commands 'dsn_notify' and 'dsn_return'.
  434 - The 'tls_nocertcheck' command was added. It disables all server 
  435   certificate checks. Use it if you get certificate check errors but
  436   still want to use the SMTP server with TLS/SSL.
  437 - The 'nostarttls' command is now called 'tls_nostarttls'. 
  438   Please update your configuration file.
  439 
  440 Version 0.6.5:
  441 - License clarification:
  442   msmtp is released under the GPL with the additional exemption that
  443   compiling, linking, and/or using OpenSSL is allowed.
  444 - If you want to use GnuTLS instead of OpenSSL, you will now need 
  445   GnuTLS >= 1.0.0 and libgcrypt >= 1.1.90!
  446 - msmtp now works on systems that lack IPv6 support
  447 - msmtp now accepts arbitrary long lines in mails
  448 
  449 Version 0.6.4:
  450 - fixed configuration file code
  451 
  452 Version 0.6.3:
  453 - portability fix for Mac OS X (Randolph Fritz)
  454 - fixed --disable-gsasl configure option
  455 - man page improvements
  456 
  457 Version 0.6.2:
  458 - use GNU Autotools (Christophe Nowicki)
  459 - fixed wildcard support in server certificate's Common Name field
  460 
  461 Version 0.6.1:
  462 - improved certificate check/verification with OpenSSL
  463 - code cleanups
  464 
  465 Version 0.6.0:
  466 - Added sanity checks of server certificate when using TLS
  467 - Strict server certificate verification with tls_trust_file command
  468 - Possibility to send client certificate if requested (tls_key_file and  
  469   tls_cert_file commands)
  470 - Optional support for GnuTLS instead of OpenSSL
  471 - Optional support for GSASL (adds DIGEST-MD5 and NTLM authentication methods)
  472 - Arguments in the configuration file may now contain blanks
  473 - Removed the possibility to choose the TLS version with the tls command
  474 - Proper recognition of server capabilities (EHLO response)