Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 8568EA585A for ; Sun, 11 May 2014 09:55:02 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id E73B114A376; Sun, 11 May 2014 09:55:01 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 5F46414A36C for ; Sun, 11 May 2014 09:54:56 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id pVB_39Ot0NqX for ; Sun, 11 May 2014 09:54:55 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 0CEE314A380 for ; Sun, 11 May 2014 09:54:54 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id D765A9A; Sun, 11 May 2014 09:54:54 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" MIME-Version: 1.0 Date: Sun, 11 May 2014 09:54:54 +0000 From: "Takahiro Kambe" Subject: CVS commit: pkgsrc/mail/postfix To: pkgsrc-changes@NetBSD.org Reply-To: taca@netbsd.org X-Mailer: log_accum Message-Id: <20140511095454.D765A9A@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: taca Date: Sun May 11 09:54:54 UTC 2014 Modified Files: pkgsrc/mail/postfix: Makefile distinfo Log Message: Update postfix to 2.11.1. Bugfixes (fixed in Postfix 2.11 and Postfix 2.12): * With connection caching enabled (the default), recipients could be given to the wrong mail server. The root cause was an incorrect predicate. Due to this, the Postfix SMTP client could under rare conditions save and restore plaintext connections that should not be cached, under a fixed lookup key that did not distinguish by destination. Problem reported by Sahil Tandon. * Enforce TLS when TLSA records exist, but all are unusable. * Don't leak memory when TLSA records exist, but all are unusable. Workarounds: * Prepend "-I. -I../../include" to the compiler command-line options, to avoid name clashes with non-Postfix header files. Documentation cleanup: * Corrected postconf(1) manpage for missing version attribution and incorrect "author" formatting. * The documentation for Postfix > 2.8 TLS activity logging was incorrect. Loglevel 0 produces no logging. Instead, information is logged only with loglevel 1 or higher. Logging cleanup: * The TLS client logged that an "Untrusted" TLS connection was established instead of "Anonymous". * For consistency, TLS policy lookup errors are now logged as warnings. To generate a diff of this commit: cvs rdiff -u -r1.272 -r1.273 pkgsrc/mail/postfix/Makefile cvs rdiff -u -r1.153 -r1.154 pkgsrc/mail/postfix/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.