"Fossies" - the Fresh Open Source Software Archive
Member "msmtp-1.8.5/NEWS" (12 Jul 2019, 18967 Bytes) of package /linux/privat/msmtp-1.8.5.tar.xz:
As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard
) with prefixed line numbers.
Alternatively you can here view
the uninterpreted source code file.
See also the latest Fossies "Diffs"
side-by-side code changes report for "NEWS": 1.8.4_vs_1.8.5
1 Version 1.8.5:
2 - Fixed OAUTHBEARER.
3 - Support for TLS client certificates via PKCS11 devices, e.g. smart cards.
4 - Various small bug fixes and improvements.
6 Version 1.8.4:
7 - Added support for the OAUTHBEARER authentication method.
8 - Several minor bug fixes.
10 Version 1.8.3:
11 - This version fixes a security problem that affects version 1.8.2 (older
12 versions are not affected): when the new default value system for
13 tls_trust_file is used, the result of certificate verification was not
14 properly checked.
16 Version 1.8.2:
17 - To simplify TLS setup, the tls_trust_file command has a new default value
18 'system' that selects the system default trust. Now you just need tls=on to
19 use TLS; the other TLS options are only required in special cases.
20 To make this work without breaking compatibility with older msmtp versions,
21 tls_fingerprint now overrides tls_trust_file, and tls_certcheck=off overrides
22 both (previously, you could not specify contradicting options).
23 - To simplify setup, a new option '--configure <mailaddress>' was added that
24 automatically generates a configuration file for a given mail address.
25 However, this only works if the mail domain publishes appropriate SRV records.
27 Version 1.8.1:
28 - Fixed our TLS code to support TLS 1.3 with GnuTLS.
30 Version 1.8.0:
31 - A minimal SMTP server called msmtpd was added that listens on the local host
32 and pipes mails to msmtp (or another program). It is intended to be used with
33 system services that cannot be configured to call msmtp directly. You can
34 disable it with the configure option --without-msmtpd.
35 - Using OpenSSL is discouraged and may not be supported in the future. Please
36 use GnuTLS instead. The reasons are explained here:
38 - As using GNU SASL is most likely unnecessary, it is disabled by default now.
39 Since everything uses TLS nowadays and thus can use PLAIN authentication, you
40 really only need it for GSSAPI.
41 - If your system requires a library for IDN support, libidn2 is now used instead
42 of the older libidn.
43 - The CRAM-MD5 authentication method is marked as obsolete / insecure and will
44 not be chosen automatically anymore.
45 - The passwordeval command does not require the password to be terminated by a
46 new line character anymore.
47 - The new logfile_time_format command allows to customize log file time stamps.
48 - Builtin default port numbers are now used instead of consulting /etc/services.
49 - Support for DJGPP and for systems lacking vasprintf(), mkstemp(), or tmpfile()
50 is removed.
52 Version 1.6.8:
53 - Add --source-ip option and source_ip command to bind the outgoing connection
54 to a specific source IP address.
55 - Enable SNI for TLS
57 Version 1.6.7:
58 - Add support for ~/.config/msmtp/config as configuration file
59 - Add network timeout handling on Windows
60 - Fix command line handling of SHA256 TLS fingerprints
61 - Fix SIGPIPE handling (affects at least Mac OS X)
62 - Add french translation, and update german translation
64 Version 1.6.6:
65 - Fix a memory leak and a double-free in msmtp_read_headers(), triggered by read
68 Version 1.6.5:
69 - Support SHA256 fingerprints for tls_fingerprint, and mark both SHA1 and MD5 as
72 Version 1.6.4:
73 - The system default policy is used with GnuTLS instead of a hardcoded one.
75 Version 1.6.3:
76 - A bug in SOCKS support was fixed.
77 - Handling non-fatal errors in TLS handshakes was fixed.
79 Version 1.6.2:
80 - A bug was fixed that prevented consecutive Bcc headers from being removed
83 Version 1.6.1:
84 - The new configure option --with-tls replaces --with-ssl.
85 - A new configure option --disable-gai-idn was added.
87 Version 1.6.0:
88 - Support for SOCKS proxies was added. This allows msmtp to be used with Tor.
89 - GNOME Keyring support now uses libsecret instead of libgnome-keyring. It is
90 now documented how to use secret-tool to manage passwords for msmtp; the
91 obsolete msmtp-gnome-tool script is removed.
92 - Configuration file security is now only checked if the file actually contains
93 secrets such as passwords. (If you still store passwords in the configuration
94 file, consider using the passwordeval command or a key ring instead.)
95 - The GSSAPI authentication method is not chosen automatically anymore, you have
96 to request it manually if you really want to use it.
97 - From: and Date: headers are now added to mails if necessary, for compatibility
98 with sendmail, postfix, exim, and other MTAs. This can be disabled with the
99 add_missing_from_header and add_missing_date_header commands.
100 - Libidn is not required for IDN support anymore on systems where getaddrinfo()
101 supports the AI_IDN flag and the GnuTLS version is >= 3.4.0.
102 - The new remove_bcc_headers command replaces the old keepbcc command (but the
103 old command is still supported for compatibility).
104 - SSLv3 is disabled, and the obsolete tls_force_sslv3 command and
105 --tls-force-sslv3 option have no effect anymore.
107 Version 1.4.32:
108 - A recipient list on the command line is now parsed as if it appeared in a
109 mail header.
111 Version 1.4.31:
112 - No significant changes.
114 Version 1.4.30:
115 - No significant changes.
117 Version 1.4.29:
118 - The obsolete service name "ssmtp" was replaced with "smtps".
120 Version 1.4.28:
121 - No significant changes.
123 Version 1.4.27:
124 - No significant changes.
126 Version 1.4.26:
127 - A new version of the msmtpq script fixes serious bugs. To update to the new
128 version of the script, you need to remove the old msmtpQ symlink, change
129 msmtpQ to msmtpq in your MUA config, and use msmtp-queue for queue management.
131 Version 1.4.25:
132 - DIGEST-MD5 authentication is not considered secure any longer. See RFC 6331.
133 - Support for alias expansion was added. See the aliases command and --aliases
136 Version 1.4.24:
137 - The build system was updated, and as a consequence some options to the
138 configure script have changed. See './configure --help'.
139 - The license of the manual was changed from the GNU FDL to a very simple
140 permissive license.
141 - The unmaintained pt_BR translation was removed.
143 Version 1.4.23:
144 - No significant changes.
146 Version 1.4.22:
147 - A new command 'passwordeval' with a corresponding '--passwordeval' option
148 allows to set the password to the output of a command.
150 Version 1.4.21:
151 - No significant changes.
153 Version 1.4.20:
154 - Added support for authentication mechanism SCRAM-SHA-1 via GNU SASL.
155 - The new command tls_fingerprint allows one to trust one particular TLS
156 certificate, in case tls_trust_file cannot be used for some reason.
157 - The new script msmtp-gnome-tool.py manages Gnome Keyring passwords for msmtp.
159 Version 1.4.19:
160 - When using OpenSSL, msmtp now correctly handles NUL characters in the Common
161 Name and Subject Alternative Name fields of certificates. This fixes a
162 security problem. Note that msmtp is not affected by this problem if GnuTLS is
165 Version 1.4.18:
166 - No significant changes.
168 Version 1.4.17:
169 - Msmtp now also reads SYSCONFDIR/netrc if the password was not found in
171 - Support for the GNOME keyring was added by Satoru SATOH.
173 Version 1.4.16:
174 - No significant changes.
176 Version 1.4.15:
177 - The configuration command tls_crl_file was added. This allows to use
178 certificate revocation lists (CRLs) during certificate verification.
179 - The configuration command tls_min_dh_prime_bits was added. This may be needed
180 to use TLS/SSL with servers that use a small Diffie-Hellman (DH) prime size.
181 - The configuration command tls_priorities was added. This allows to fine tune
182 TLS/SSL session parameters.
184 Version 1.4.14:
185 - The -t option now properly supports Resent-* headers.
186 - The --read-envelope-from option was added. It allows to read the envelope from
187 address from the From header.
188 - The environment variables SMTPSERVER and EMAIL can be used to configure msmtp
189 for simple use cases.
190 - Support for the Mac OS X keychain was added by Jay Soffian.
192 Version 1.4.13:
193 - Useful scripts are now distributed in the scripts subdirectory.
194 - The license was updated to GPLv3 or later (source code) and GFDLv1.2 or later
197 Version 1.4.12:
198 - No significant changes.
200 Version 1.4.11:
201 - Security improvements:
202 - TLS requires tls_trust_file or a disabled tls_certcheck now, so that it is
203 not silently vulnerable to man-in-the-middle attacks.
204 - NTLM authentication is considered insecure because it is undocumented. It is
205 therefore not used automatically without TLS anymore.
207 Version 1.4.10:
208 - No significant changes.
210 Version 1.4.9:
211 - No significant changes.
213 Version 1.4.8:
214 - No significant changes.
216 Version 1.4.7:
217 - The configuration command tls_force_sslv3 was added. This is needed to use
218 TLS/SSL with some old and broken servers.
220 Version 1.4.6:
221 - The options to the configure script have changed! See the first few
222 paragraphs of INSTALL for details.
223 - Optional support for Internationalized Domain Names (IDN) was added.
224 GNU Libidn is required for this.
226 Version 1.4.5:
227 - Only minor tweaks.
229 Version 1.4.4:
230 - Support for the sendmail -F option (accepted but ignored).
231 - Removed the OpenSSL exception note from the license information.
233 Version 1.4.3:
234 - Automatic envelope-from addresses are only generated when auto_from is enabled
235 with the new auto_from command or --auto-from option.
236 This allow empty envelope from addresses to be set with the from command or
237 --from option.
239 Version 1.4.2:
240 - The 'connect_timeout' setting was replaced by a 'timeout' setting that applies
241 to all network operations. The old option and command are still accepted, but
242 they are not restricted to connection attempts anymore.
243 - Native language support (NLS) was added. Currently the only supported language
244 besides english is german, but it is easy to add more translations (hint,
247 Version 1.4.1:
248 - Only bug fixes, no new features.
250 Version 1.4.0:
251 - This is the new stable release of msmtp.
252 BEWARE: When upgrading from 1.2.4, note that
253 - Authentication is not enabled automatically anymore! Insert the command
254 "auth on" into account definitions that need it.
255 - Some command line options have changed!
256 - Summary of new features since 1.2.4:
257 - Sendmail compatible command line options, including -t, -N, and -R
258 - New long options to configure almost everything on the command line
259 - Optional account selection with -f/--from
260 - Support for a system wide configuration file
261 - Optional automatic construction of envelope from addresses
262 - More flexible account definitions
263 - Configurable connection timeouts
264 - Improved log file logging
265 - Syslog logging
266 - Improved TLS/SSL support
267 - Support for LMTP
268 - Support for the EXTERNAL and GSSAPI authentication methods
269 - Support for .netrc and password prompting
270 - Rewritten documentation, available in various formats
271 - New since 1.3.9:
272 - No new features, but minor improvements mainly regarding interoperability
273 and performance. And some minor bug fixes.
275 Version 1.3.9:
276 - Added support for the .netrc file: If a password is needed but none is given,
277 msmtp will try to find it in ~/.netrc, and if that fails, msmtp will prompt
278 you for it.
279 - The authentication user name is included in the log if authentication is used.
280 Suggested by Jim Fohlin.
281 - An account from the system configuration file cannot be partially changed in
282 the user configuration file anymore; it must be replaced completely instead.
283 - Added LMTP support.
285 Version 1.3.8:
286 - The default values from a defaults section in a system configuration file
287 are not valid in the user configuration file anymore, to prevent changes in
288 the system configuration file from breaking user setups.
290 Version 1.3.7:
291 - The user configuration file is required to have no more permissions than
292 0600 (user read/write).
293 - Added specialisation to account definitions. See documentation of the
294 account command and the example files.
295 - Added the new connect_timeout command and --connect-timeout option.
296 - The password will be prompted for if none is given in the configuration file.
298 Version 1.3.6:
299 - New documentation!
300 It was rewritten using texinfo, which allows easy generation of html and pdf
302 The man page is still up to date and will not be dropped.
303 - A new configuration file command ("defaults") to set default values for all
304 following accounts was added. Suggested by Jim Fohlin.
305 - Support for EXTERNAL authentication was added.
306 - You need GnuTLS >= 1.2.0 now if you want GnuTLS support.
307 - bug fixes!
309 Version 1.3.5:
310 - A system wide configuration file SYSCONFDIR/msmtprc will be used if it exists.
311 It's settings will be overridden by the the user configuration file.
312 Use the --sysconfdir configure option to set SYSCONFDIR to something other
313 than /usr/local/etc.
314 - If no envelope from address is given, msmtp will construct one using the user
315 name and the mail domain (if given).
316 - New command/options pairs:
317 - maildomain/--maildomain to set the domain part of constructed envelope from
319 - syslog/--syslog to enable logging to syslog
321 Version 1.3.4:
322 - Just some cleanups and bugfixes. The built-in CRAM-MD5 code works again.
324 Version 1.3.3:
325 - support for Remote Message Queue Starting (RMQS) was added, see option --rmqs
326 - msmtp can now print information about the peer's TLS certificate.
327 Use --serverinfo (or --debug) to see it
328 - If you want GnuTLS as your TLS library, you need a version >= 1.1.23 now
330 Version 1.3.2:
331 - You need gsasl or libgsasl >= 0.2.4 if you want GNU SASL support
332 - Various bugfixes
334 Version 1.3.1:
335 - fixed the -t option
337 Version 1.3.0:
338 - INCOMPATIBLE CHANGES:
339 - configuration file:
340 - The auth command is now *required* to activate authentication. Just
341 setting user name and password is not enough anymore
342 - The tls_nostarttls command should be changed to "tls_starttls off",
343 though the old command is still supported
344 - The tls_nocertcheck command should be changed to "tls_certcheck off",
345 though the old command is still supported
346 - command line:
347 - Changed short options (because of collision with sendmail options):
348 -p is now -P
349 -F is now -C
350 -v is not available anymore, use --version
351 -h is not available anymore, use --help
352 - If you used -f/--from without -a/--account to override the envelope from
353 address of the default account, you have to use --account=default
354 explicitly now, because otherwise msmtp tries to find an account matching
355 the from address
356 - NEW FEATURES:
357 - Sendmail compatible interface
358 - Almost all options can now be set on the command line
359 - Support for the sendmail -t option (read additional recipient addresses
360 from the To, Cc, and Bcc headers of the mail)
361 - You can choose the account using the -f/--from option:
362 If you use -f/--from but not -a/--account, the first account of the
363 configuration file that has a matching envelope from address will be used
364 - GSSAPI authentication (you need GNU SASL >= 0.2.3 with GSSAPI support)
365 - New command ntlmdomain to set the domain parameter for NTLM authentication
366 - CHANGES:
367 - Long option support on all platforms (thanks to gnulib)
368 - Enhanced almost all commands to allow unsetting of features
369 - Changed log file information: Instead of conffile/account, log
370 information about host, tls, auth, and from.
372 Version 1.2.4:
373 - No new features.
375 Version 1.2.3:
376 - IPv6 support on Windows systems
377 - The configuration file supports all commands and arguments related to
378 TLS and authentication, even if TLS and/or GNU SASL support is not
379 compiled in
380 - The GNU SASL library is not required to support DIGEST-MD5 and NTLM
381 anymore. This means you can now use the packaged versions of the library
382 from Gentoo or Debian sarge.
383 - You can use the -v/--version option to find out which authentication
384 methods are supported.
386 Version 1.2.2:
387 - Enhancements to the logfile command:
388 - All available information is now written to the logfile (new fields:
389 mailsize=..., smtpmsg='...', errormsg='...').
390 - Logging to standard output is possible by using "logfile -"
392 Version 1.2.1:
393 - No new features.
395 Version 1.2.0:
396 - This version can be compiled without TLS/SSL support; use
397 --disable-ssl if you really want that.
398 - Read the entries for versions 1.1.x for more changes since the last
399 stable version 1.0.0.
401 Version 1.1.3:
402 - New option -i for compatibility with mail(1).
403 - New 'logfile' command; see man page for details.
405 Version 1.1.2:
406 - No user visible changes.
408 Version 1.1.1:
409 - The tls_nostarttls command now sets the default port to 465 (ssmtp).
411 Version 1.1.0:
412 - Support for SMTP command pipelining. On high latency networks, this
413 may increase transmission speed, especially when sending to many
415 - The short option for --file, -f, has changed to -F
416 - A new option --from/-f is available to set the envelope from address.
417 - A new option --serverinfo/-S is available to print information
418 about the capabilities and limitations of an SMTP server
420 Version 1.0.0:
421 - New feature: tilde expansion for filenames in the configuration file
423 Version 0.7.2:
424 - This version adds native support for Windows 9x/ME/NT/2000/XP/2003
425 (with MinGW) and DOS (with DJGPP and the Watt32 library).
427 Version 0.7.1:
428 - New command: 'domain'
429 - New options: --pretend and --debug
431 Version 0.7.0:
432 - Support for DSN (Delivery Status Notifications) was added via
433 the new commands 'dsn_notify' and 'dsn_return'.
434 - The 'tls_nocertcheck' command was added. It disables all server
435 certificate checks. Use it if you get certificate check errors but
436 still want to use the SMTP server with TLS/SSL.
437 - The 'nostarttls' command is now called 'tls_nostarttls'.
438 Please update your configuration file.
440 Version 0.6.5:
441 - License clarification:
442 msmtp is released under the GPL with the additional exemption that
443 compiling, linking, and/or using OpenSSL is allowed.
444 - If you want to use GnuTLS instead of OpenSSL, you will now need
445 GnuTLS >= 1.0.0 and libgcrypt >= 1.1.90!
446 - msmtp now works on systems that lack IPv6 support
447 - msmtp now accepts arbitrary long lines in mails
449 Version 0.6.4:
450 - fixed configuration file code
452 Version 0.6.3:
453 - portability fix for Mac OS X (Randolph Fritz)
454 - fixed --disable-gsasl configure option
455 - man page improvements
457 Version 0.6.2:
458 - use GNU Autotools (Christophe Nowicki)
459 - fixed wildcard support in server certificate's Common Name field
461 Version 0.6.1:
462 - improved certificate check/verification with OpenSSL
463 - code cleanups
465 Version 0.6.0:
466 - Added sanity checks of server certificate when using TLS
467 - Strict server certificate verification with tls_trust_file command
468 - Possibility to send client certificate if requested (tls_key_file and
469 tls_cert_file commands)
470 - Optional support for GnuTLS instead of OpenSSL
471 - Optional support for GSASL (adds DIGEST-MD5 and NTLM authentication methods)
472 - Arguments in the configuration file may now contain blanks
473 - Removed the possibility to choose the TLS version with the tls command
474 - Proper recognition of server capabilities (EHLO response)