# $Id: smeserver-qpsmtpd.spec,v 1.57 2023/08/16 02:19:17 jpp Exp $ Summary: SME Server qpsmtpd module %define name smeserver-qpsmtpd Name: %{name} %define version 11.0.0 %define release 10 Version: %{version} Release: %{release}%{?dist} License: GPL Group: Networking/Daemons Source: %{name}-%{version}.tar.xz BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot Requires: qpsmtpd >= 0.96-19 Requires: perl(Mail::DKIM) Requires: perl(Mail::DKIM::DkSignature) Requires: perl(ClamAV::Client) Requires: perl(Mail::DMARC) Requires: perl(Net::IMAP::Simple) >= 1.2212 Requires: qpsmtpd-plugins >= 0.0.1-sme04 Requires: ipsvd Requires: smeserver-lib >= 1.16.0-08 Requires: smeserver-clamav >= 2.7.0 Obsoletes: e-smith-obtuse-smtpd Obsoletes: e-smith-qmail-smtpd Obsoletes: e-smith-mailfront Obsoletes: e-smith-ssl-mailfront Provides: smeserver-smtpd Provides: e-smith-smtpd Obsoletes: e-smith-qpsmtpd < %{version} Provides: e-smith-qpsmtpd Obsoletes: smeserver-qpsmtpd-tnef2mime < %{version} Provides: smeserver-qpsmtpd-tnef2mime Requires: smeserver-base >= 4.15.2 Requires: perl-Convert-TNEF Requires: perl-IO-stringy Requires: perl-File-MMagic Requires: perl-MIME-tools BuildArchitectures: noarch BuildRequires: smeserver-devtools AutoReqProv: no %description SME Server qpsmtpd smtpd module %changelog * Mon Nov 25 2024 Jean-Philippe Pialasse 11.0.0-10.sme - make compatible for postfix [SME: 1279] use postfix queue, qmail queue removed copy templates of rcpthosts to (us)qpsmtpd for rcpt_ok copy templates of smtproutes to (us)qpsmtpd for check_smtp_forward * Mon Oct 21 2024 Jean-Philippe Pialasse 11.0.0-9.sme - fix configuration for auth per deamon [SME: 12451] - remove deamontools requirement [SME: 12615] * Thu Apr 25 2024 Jean-Philippe Pialasse 11.0.0-8.sme - add listening deamon on submission port 587 [SME: 6510] - move qpsmtpd daemons to full systemd supervision [SME: 12615] - separate configuration for the 3 qpsmtpd daemons [SME: 12451] increase default TLS version on u/sqpsmtpd as auth is required - increase Softlimit to 150M [SME: 12638] - remove old qmail templates [SME: 9492] template for /var/qmail/control/{badrcptto,badmailfrom,rcpthosts} also import template for config/badmailfrom from smeserver-wbl * Sat Apr 13 2024 Jean-Philippe Pialasse 11.0.0-7.sme - move post-transaction-actions script [SME: 12535] - restart qpsmtpd on major perl module updates [SME: 12434] * Fri Apr 12 2024 John Crisp 11.0.0-6.sme - Fix soflimit path to /usr/bin [SME: 12583] * Thu Apr 04 2024 Brian Read 11.0.0-5.sme - Set license file to GPL2.0 [SME: 12577] * Sat Mar 30 2024 Trevor Batley 11.0.0-4.sme - use setuidgid and multilog from /usr/bin [SME: 12566] * Sat Mar 23 2024 Jean-Philippe Pialasse 11.0.0-3.sme - fix missing provides smeserver-smtpd [SME: 12521] * Sat Mar 23 2024 Brian Read 11.0.0-2.sme - Change Requires: e-smith- to Requires:smeserver- * Sat Mar 23 2024 Brian Read 11.0.0-1.sme - Update Release and Version to base version and 1st release for SME11 [SME: 12518] * Thu Oct 26 2023 cvs2git.sh aka Brian Read 2.7.0-15.sme - Roll up patches and move to git repo [SME: 12338] * Thu Oct 26 2023 BogusDateBot - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday, by assuming the date is correct and changing the weekday. * Tue Aug 15 2023 Jean-Philippe Pialasse 2.7.0-14.sme - fix unable to auth with imap if set to localhost access [SME: 12398] * Mon Aug 14 2023 Jean-Philippe Pialasse 2.7.0-13.sme - fix imap auth needs escaping passwords [SME: 12395] now requires perl(Net::IMAP::Simple) >= 1.2212 (1.2034) do not requires e-smith-cvm-unix-local anymore * Sun Feb 05 2023 John Crisp 2.7.0-12.sme - migrate from cvm-unix auth to imap auth [SME: 12193] * Wed May 18 2022 John Crisp 2.7.0-11.sme - Print both 255 char and full length DKIM keys [SME: 11974] * Tue Apr 05 2022 Jean-Philippe Pialasse 2.7.0-10.sme - fix unable to set internal only pseudonym as full email [SME: 11933] * Tue Apr 05 2022 Jean-Philippe Pialasse 2.7.0-9.sme - add softlimit template for qpsmtpd [SME: 11858] increase softlimit to 50000000. * Thu Feb 10 2022 Jean-Philippe Pialasse 2.7.0-8.sme - fix regression Set the default helo policy to lenient [SME: 11864] * Tue Nov 16 2021 Jean-Philippe Pialasse 2.7.0-7.sme - mail sent on 127.0.0.200:25 should be spam checked [SME: 10289] filtering again fetchmail originating mails * Mon Nov 15 2021 Jean-Philippe Pialasse 2.7.0-6.sme - sighup on reload [SME: 11759] * Thu Sep 16 2021 Jean-Philippe Pialasse 2.7.0-5.sme - fix tnef2mime FATAL PLUGIN ERROR [SME: 11648] this will be a temp fix by redefining MIME::Parser::Filer::output_path until it has been fixed upstream * Tue Mar 30 2021 Jean-Philippe Pialasse 2.7.0-3.sme - update depreacted reject_threshold to reject [SME: 11492] * Fri Feb 12 2021 Jean-Philippe Pialasse 2.7.0-2.sme - remove /usr/lib/systemd/system-preset/80-koozali-qpsmtpd.preset [SME: 10958] * Wed Dec 16 2020 John Crisp 2.7.0-1.sme - modify for clamav 0.103.0 [SME: 11210] - roll up patches * Thu Dec 10 2020 Michel Begue 2.6.0-40.sme - add Requires=runit.service (qpsmtpd & sqpsmtpd) [SME: 11245] * Sun Dec 06 2020 Jean-Philippe Pialasse 2.6.0-39.sme - fix service not enabled [SME: 11107] remove reset-unsavedflag * Fri Nov 27 2020 Michel Begue 2.6.0-37.sme - Move qpsmtpd & sqpsmtpd services to systemd [SME: 11107] - Create smeserver-qpsmtpd-update event [SME: 11164] * Sat Jun 27 2020 Jean-Philippe Pialasse 2.6.0-36.sme - expand badrcptto_ext when needed [SME: 10638] this avoid user, group or pseudonyms for internal purpose to be reachable from outside * Sat May 02 2020 Jean-Philippe Pialasse 2.6.0-34.sme - minimum Protocol TLSv1.0 [SME: 10460] better ciphers order. * Sun Mar 11 2018 Jean-Philippe Pialasse 2.6.0-32.sme - add forcespamcheck support for fetchmail [SME: 10290] * Thu Aug 3 2017 Daniel Berteaud 2.6.0-31.sme - Log DMARC reporting in syslog instead of sending email to the admin. Also suppress SSL connection failed warnings [SME: 10298] * Sat May 20 2017 Daniel Berteaud 2.6.0-30.sme - Turn DMARC reporting off by default [SME: 10303] * Wed Apr 12 2017 Jean-Philippe Pialasse 2.6.0-29.sme - update patch smeserver-qpsmtpd-2.6.0-smtpd_to_qpsmtpd.patch [SME: 9478] - Greeting property was still attached to smtpd in a template * Mon Feb 27 2017 Jean-Philippe Pialasse 2.6.0-28.sme - updated regex for RBL and SBL in smeserver-qpsmtpd-2.6.0-change_rbl_sbl_list_separator.patch - to take into account list using a subdomain [SME: 10123] - Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday, by assuming the date is correct and changing the weekday. Thu May 11 2005 --> Thu May 05 2005 or Wed May 11 2005 or Thu May 12 2005 or .... Sun Sep 25 2010 --> Sun Sep 19 2010 or Sat Sep 25 2010 or Sun Sep 26 2010 or .... * Tue Jul 12 2016 Daniel Berteaud 2.6.0-27.sme - Turn SPF and DMARC rejects off by default [SME: 9664] * Fri Jun 17 2016 Daniel Berteaud 2.6.0-26.sme - Fix disabling DMARC reporting [SME: 9206] * Tue Jun 7 2016 Daniel Berteaud 2.6.0-25.sme - Add missing tnef2mime and MaximumDateOffset to qpsmtpd [SME: 9560] * Fri May 27 2016 Daniel Berteaud 2.6.0-24.sme - Create missing directories for DKIM keys [SME: 9496] - Create missing directory for the DMARC report database [SME: 9206] * Tue May 24 2016 Daniel Berteaud 2.6.0-23.sme - Remove o and r DKIM fields as they are not standard [SME: 9496] * Mon May 16 2016 Daniel Berteaud 2.6.0-22.sme - In qpsmtpd-print-dns set DKIM options after the public key so the string will still be splitted correctly [SME: 9496] * Sat May 7 2016 Daniel Berteaud 2.6.0-21.sme - Fix a syntax error in qpsmtpd-print-dns script [SME: 9206] * Fri May 6 2016 Daniel Berteaud 2.6.0-20.sme - Enable DMARC checking and reporting [SME: 9206] - Add helper to publish DKIM/DMARC/SPF policy [SME: 9496] - Allow DKIM signing of outbound emails [SME: 9496] - Possibility to reject on SPF failure [SME: 9479] * Fri May 6 2016 Daniel Berteaud 2.6.0-19.sme - Enable inbound dkim checking (without reject) [SME: 9480] * Fri May 6 2016 Daniel Berteaud 2.6.0-18.sme - Enable inbound SPF checking (without reject) [SME: 9479] * Fri Apr 22 2016 Daniel Berteaud 2.6.0-17.sme - Merge smtpd entry into qpsmtpd, same for ssmtpd into sqpsmtpd [SME: 9478] * Fri Apr 22 2016 Daniel Berteaud 2.6.0-16.sme - Use an additional badrcptto file list for external connections so local only pseudonymes work as expected [SME: 9460] [SME: 4597] * Thu Apr 21 2016 Daniel Berteaud 2.6.0-15.sme - Call karma before earlytalker and add support for the new strikes param [SME: 9462] * Wed Apr 20 2016 Daniel Berteaud 2.6.0-14.sme - Use the naughty plugin to defer rejections, leaving users an opportunity to authenticate [SME: 5092] * Wed Apr 20 2016 Daniel Berteaud 2.6.0-13.sme - Use the helo plugin to check reverse DNS [SME: 2370] * Mon Apr 18 2016 Daniel Berteaud 2.6.0-12.sme - Add support for uribl plugin, disabled by default [SME: 9467] * Sun Apr 17 2016 Daniel Berteaud 2.6.0-11.sme - Change separator for SBList and RBLlist from : to , [SME: 8484] * Sun Apr 17 2016 Daniel Berteaud 2.6.0-10.sme - Allow setting the karma negative value from the KarmaNegative prop [SME: 9462] * Sun Apr 17 2016 Daniel Berteaud 2.6.0-9.sme - Fix max_size param for the clamdscan plugin [SME: 9465] * Sun Apr 17 2016 Daniel Berteaud 2.6.0-8.sme - Use clamdscan plugin instead of clamav [SME: 9465] * Sat Apr 16 2016 Daniel Berteaud 2.6.0-7.sme - Enable the bogus_bounce plugin [SME: 9464] * Sat Apr 16 2016 Daniel Berteaud 2.6.0-6.sme - Enable the loadcheck plugin [SME: 9463] * Sat Apr 16 2016 Daniel Berteaud 2.6.0-5.sme - Add support for the karma plugin, but keep it disabled by default [SME: 9462] * Sat Apr 16 2016 Daniel Berteaud 2.6.0-4.sme - Create a dhparam for qpsmtpd [SME: 9461] * Sat Apr 16 2016 Daniel Berteaud 2.6.0-3.sme - Adapt for qpsmtpd-0.96 (mainly plugin renamed) [SME: 9460] * Tue Mar 29 2016 Jean-Philippe Pialasse 2.6.0-2.sme - fix warning on spool_dir perms [SME: 9408] - smeserver-qpsmtpd-2.6.0-PERMS.patch * Sat Feb 06 2016 stephane de Labrusse 2.6.0-1.sme - Initial release to sme10 * Wed Jan 13 2016 Daniel Berteaud 2.4.0-14.sme - Expand all ssl related conf in ssl-update [SME: 9152] * Tue Jan 12 2016 Daniel Berteaud 2.4.0-13.sme - Hook into a new ssl-update event [SME: 9152] * Thu Jan 7 2016 Daniel Berteaud 2.4.0-12.sme - Allow setting SSL protocols from DB [SME: 9162] * Thu Aug 6 2015 Daniel Berteaud 2.4.0-11.sme - Add domain part to bcc user if missing [SME: 8990] * Wed Dec 3 2014 stephane de Labrusse 2.4.0-10.sme - allow IP relayclient stored by DB [SME: 8704] - Code from Stefano ZAmboni - & Charlie Brady * Tue Dec 2 2014 stephane de Labrusse 2.4.0-9.sme - allow IP relayclient stored by DB [SME: 8704] - Code from Stefano ZAmboni * Tue May 6 2014 Ian Wells 2.4.0-8.sme - Remove dnsbl.ahbl.org RBL List [SME: 8368] * Tue Apr 15 2014 Ian Wells 2.4.0-7.sme - Remove the databytes file from qpsmtpd config [SME: 8329] * Tue Apr 15 2014 Ian Wells 2.4.0-6.sme - Update SBL and RBL Lists [SME: 8236] * Tue Jan 28 2014 Ian Wells 2.4.0-5.sme - Remove insecure ciphers [SME: 8138] * Fri Jun 14 2013 Daniel Berteaud 2.4.0-4 - Fix size_limit initialization [SME: 7671] * Wed Apr 24 2013 Daniel Berteaud 2.4.0-3 - reads MaxMessageSize prop of spamassassin and adds it to the arguments of the plugin if defined [SME: 7559] * Wed Apr 10 2013 Daniel Berteaud 2.4.0-2 - Requires e-smith-cvm-unix-local [SME: 7509] * Thu Feb 7 2013 Shad L. Lords 2.4.0-1 - Roll new stream for sme9 * Wed Jul 18 2012 Ian Wells 2.2.0-15 - Revert the 2.2.0-14 change and fix properly in e-smith-base [SME: 7026] * Fri Jul 06 2012 Ian Wells 2.2.0-14 - tls ciphers defaults to disallow SSLv2 [SME: 7026] * Thu Oct 14 2010 Daniel Berteaud 2.2.0-13 - Read number of log files to keep from the DB [SME: 2862] * Fri Oct 8 2010 Daniel Berteaud 2.2.0-12 - Log all the run script to stdout [SME: 5831] * Mon Oct 4 2010 Shad L. Lords 2.2.0-11.sme - Allow relay from all local 127.0.0.x addresses [SME: 5575] * Fri Oct 1 2010 Daniel Berteaud 2.2.0-10.sme - Fix RelayRequiresAuth for local network [SME: 5575] * Sat Sep 25 2010 Shad L. Lords 2.2.0-9.sme Sun Sep 25 2010 --> Sun Sep 19 2010 or Sat Sep 25 2010 or Sun Sep 26 2010 or .... - Make tls ciphers configurable [SME: 6241] * Sat Sep 25 2010 Shad L. Lords 2.2.0-8.sme Sun Sep 25 2010 --> Sun Sep 19 2010 or Sat Sep 25 2010 or Sun Sep 26 2010 or .... - Require auth for all relays (local too) [SME: 5575] * Sat Jun 5 2010 Ian Wells 2.2.0-7.sme - Add qpsmtpd template fragment for tls_before_auth [SME: 6004] * Sun Dec 27 2009 Jonathan Martens 2.2.0-6.sme - Enable qpsmtpd RequireResolvableFromHost plugin by default, remove database entry and the database default value [SME: 5617] * Sat Nov 7 2009 Jonathan Martens 2.2.0-5.sme - Tie template fragment into event system to have it expanded [SME: 5031] * Fri Nov 6 2009 Jonathan Martens 2.2.0-4.sme - Add qpsmtpd template fragment for custom SPAM subject prefix [SME: 5031] * Thu Oct 29 2009 Shad L. Lords 2.0.0-3.sme - Add hooks cleanout back in in so auth works. * Thu Oct 29 2009 Shad L. Lords 2.2.0-2.sme - Add compatibility with qpsmtpd 0.83 [SME: 5543] - Add tls to base config [SME: 1076] * Tue Oct 7 2008 Shad L. Lords 2.2.0-1.sme - Roll new stream to separate sme7/sme8 trees [SME: 4633] * Sun Oct 5 2008 Shad L. Lords 1.2.1-57 - Fix migrate fragment for zen.spamhaus.org [SME: 2116] * Sun Oct 5 2008 Shad L. Lords 1.2.1-56 - Migrate sbl-xbl.spamhaus.org to zen.spamhaus.org [SME: 2116] - Remove blackhole.securitysage.com [SME: 4623] * Wed Jul 23 2008 Gavin Weight 1.2.1-55 - Fix empty lines and add feature to specify disclaimer directory. (thanks, Federico Simoncelli). [SME: 3244] * Thu Apr 17 2008 Gavin Weight 1.2.1-54 - Migrate ordb.net entries away. [SME: 4214] * Tue Jan 29 2008 Filippo Carletti 1.2.1-53 - Enable auth plugin for local connections. [SME: 2631] * Thu Jan 10 2008 Gavin Weight 1.2.1-52 - Fix divide by zero error on log rotate. [SME: 3620] * Wed Jan 09 2008 Stephen Noble 1.2.1-51 - check_smtp_forward changed from loginfo to logdebug [SME: 3471] * Mon Jan 7 2008 Stephen Noble 1.2.1-50 - disable qplogsumm by deafult [SME: 3727] * Mon Jan 7 2008 Stephen Noble 1.2.1-49 - rename template-begin fragments [SME: 2333] * Mon Oct 29 2007 Charlie Brady 1.2.1-48 - Add badrcptto_pattern rule to block "null" recipient addresses. [SME: 3476] * Thu Sep 6 2007 Charlie Brady 1.2.1-47 - Add configurable timeouts during SMTP command parsing and message body receipt. [SME: 3377] * Thu Sep 6 2007 Charlie Brady 1.2.1-46 - Disconnect immediately if dnsbl plugin rejects recipient addresses (and therefore would never accept the message). [SME: 3352] * Thu Sep 6 2007 Charlie Brady 1.2.1-45 - Configure hosts_allow plugin, which use the pre_connection hook and therefore needs to be done before the 'peers' plugin. [SME: 3352] * Fri Aug 03 2007 Charlie Brady 1.2.1-44 - Fix rbl migrate fragment (thanks, Mike McCarn). [SME: 3229] * Sun Jun 17 2007 Shad L. Lords 1.2.1-43 - Updates for disclaimer plugin [SME: 2648] * Sat Jun 16 2007 Shad L. Lords 1.2.1-42 - Add disclaimer plugin disabled by default [SME: 2648] * Thu Jun 14 2007 Shad L. Lords 1.2.1-41 - Update for new features in qpsmtpd v0.40 * Thu Jun 14 2007 Shad L. Lords 1.2.1-40 - Remove conflicts qpsmtpd >= 0.33 * Sat Jun 9 2007 Shad L. Lords 1.2.1-39 - Update to correct version of qplogsumm.pl [SME: 2971] * Fri Jun 08 2007 Shad L. Lords 1.2.1-38 - Add qplogsumm.pl to package for logging [SME: 2971] * Fri Jun 08 2007 Stephen Noble 1.2.1-37 - Bump * Fri Jun 08 2007 Stephen Noble 1.2.1-36 - Cumulative statistics for qpsmtpd using logterse [SME: 2971] * Sun Apr 29 2007 Shad L. Lords - Clean up spec so package can be built by koji/plague * Tue Apr 10 2007 Shad L. Lords 1.2.1-35 - Add logterse plugin and reduce logging level [SME: 2875] * Fri Apr 06 2007 Shad L. Lords 1.2.1-34 - Remove templates2events link for rcpthosts [SME: 2716] * Wed Mar 07 2007 Shad L. Lords 1.2.1-33 - Add db entry for soft memory limits [SME: 2308] * Sat Jan 27 2007 Shad L. Lords 1.2.1-32 - Keep TNEF attachment if contains special lookout stuff [SME: 2339] * Tue Jan 23 2007 Shad L. Lords 1.2.1-31 - Add DomainKey and DKIM signing plugin * Thu Jan 18 2007 Shad L. Lords 1.2.1-30 - Remove whitelist_soft plugin usage [SME: 2322] * Sat Jan 13 2007 Shad L. Lords 1.2.1-29 - Rename badmailfrom template to 10sample [SME: 2279] * Thu Jan 11 2007 Shad L. Lords 1.2.1-28 - Fix peers plugin to hook new methods [SME: 2091] * Thu Jan 11 2007 Shad L. Lords 1.2.1-27 - Make smtp auth use local plugins [SME: 2091] * Wed Jan 10 2007 Shad L. Lords 1.2.1-26 - Migrate ordb.org entries away. [SME: 2274] - Clean-up SBL and RBL lists to use be in the correct place and use recognized lists. * Thu Dec 28 2006 Shad L. Lords 1.2.1-25 - Reverse last change and fix correctly by passing peers/0 to the inital peers plugin [SME: 2167] * Tue Dec 26 2006 Shad L. Lords 1.2.1-24 - Update peers to exit gracefully if no config passed [SME: 2167] * Thu Dec 07 2006 Shad L. Lords - Update to new release naming. No functional changes. - Make Packager generic * Fri Dec 1 2006 Gordon Rowell 1.2.1-23 - Re-enable these by default for local connections as they already check for relayclient() for relevant sections: [SME: 1893] 30check_badmailfrom 33check_badrcptto_patterns 34check_badrcptto 38check_goodrcptto * Fri Dec 1 2006 Gordon Rowell 1.2.1-22 - Replace config/peers/0 and config/peers/local template directory symlinks with a tree of symlinks. Disable the following plugins for local connections: [SME: 1893] 10check_earlytalker 12count_unrecognized_commands 16require_resolvable_fromhost 20rhsbl 22dnsbl 30check_badmailfrom 33check_badrcptto_patterns 34check_badrcptto 38check_goodrcptto 70spamassassin * Fri Nov 24 2006 Gordon Rowell 1.2.1-21 - Fix last change to use SIGUSR1, not SIGHUP, and only for qpsmtpd. The peers directories are shared between qpsmtpd and sqpsmtpd [SME: 1893] * Fri Nov 24 2006 Gordon Rowell 1.2.1-20 - Regenerate peers directories in network-{create,delete} [SME: 1893] * Fri Nov 24 2006 Gordon Rowell 1.2.1-19 - Update e-smith-lib requires to pick up configure_peers() change [SME: 1893] - Add control/1 script and call from run script to configure peers [SME: 1893] * Wed Nov 22 2006 Gordon Rowell 1.2.1-18 - Ensure config directory resolves for sqpsmtpd service [SME: 1893] * Wed Nov 22 2006 Gordon Rowell 1.2.1-17 - Create config/peers directory [SME: 1893] * Wed Nov 22 2006 Gordon Rowell 1.2.1-16 - Expand config/peers/local in the relevant events [SME: 1893] - TODO: Generate peers links for local networks * Wed Nov 22 2006 Gordon Rowell 1.2.1-15 - Remove peers/0 templates.metadata file - Create config/peers templates directories - Symlink config/peers/{0,local} to ../plugins - To override local qpsmtpd config, create custom template for /var/service/qpsmtpd/config/peers/local [SME: 1893] * Wed Nov 22 2006 Gordon Rowell 1.2.1-14 - Merge in smeserver-qpsmtpd-tnef2mime [SME: 2087] * Mon Nov 20 2006 Gavin Weight 1.2.1-13 - Fix rcpthosts to regenerate on ip-change. [SME: 1926] * Fri Nov 17 2006 Gordon Rowell 1.2.1-12 - Correct last patch (wrong templates.metadata file) [SME: 1893] - Expand config/peers/0 in the relevant events * Fri Nov 17 2006 Gordon Rowell 1.2.1-11 - Enable Charlie's peers plugin [SME: 1893] Use templates.metadata to provide backwards compatibility with add-on template fragments (at least for the first pass) config/peers/0 is generated from existing config/plugins template config/plugins is now a static file which just loads the peers plugin - TODO: Generate local plugins file(s) with different config * Sun Oct 22 2006 Charlie Brady 1.2.1-10 - Fix RE used to strip octets from IP address in peers plugin. [SME: 1893] * Fri Sep 08 2006 Charlie Brady 1.2.1-09 - Add 'peers' plugin code. [SME: 1893] * Thu Aug 24 2006 Filippo Carletti 1.2.1-08 - Add option for stealth mail logging. To enable: - config setprop qpsmtpd BccMode bcc [SME: 1876] * Fri Aug 18 2006 Gordon Rowell 1.2.1-07 - Enable check_smtp_forward if any domains are being forwarded to internal mail servers [SME: 1850] * Fri Aug 18 2006 Gordon Rowell 1.2.1-06 - Add check_smtp_forward plugin which contacts the internal mail server(s) to determine whether the mail would be accepted. If so, just let it queue normally - TODO: Add configuration to plugins file if required [SME: 1850] * Fri Aug 18 2006 Gordon Rowell 1.2.1-05 - Revert last change. Enhancing the smtp-forward plugin to handle multiple internal mail servers for different domains is too complex. Let's let qmail do that work. [SME: 710] * Fri Aug 18 2006 Gordon Rowell 1.2.1-04 - Re-enable smtp-forward plugin requiring version which declines if the connection is from a relayclient, to allow fallthrough to standard qmail-queue plugin. - Add default/failsafe queue/qmail-queue plugin [SME: 710] * Thu Jul 27 2006 Gordon Rowell 1.2.1-03 - Remove hosts from badrcptto - we only handle domains [SME: 1777] * Sat Jul 1 2006 Gordon Rowell 1.2.1-02 - Allow mail to [$ExternalIP] to support postmaster@[$ExternalIP] [SME: 1675] * Sat Jul 1 2006 Gordon Rowell 1.2.1-01 - Roll tarball with patches to 1.2.0-10 * Thu Jun 29 2006 Gordon Rowell 1.2.0-10 - Change default smtpgreeting to $SystemName.$DomainName [SME: 1325] * Thu Jun 29 2006 Gordon Rowell 1.2.0-09 - Template /var/service/qpsmtpd/config/smtpgreeting, defaulting to $DomainName. To set a custom greeting, set $smtpd{Greeting} [SME: 1325] * Mon Jun 26 2006 Filippo Carletti 1.2.0-08 - Expand badrcptto on group create/modifiy/delete events [SME: 1632] * Wed Jun 21 2006 Gordon Rowell 1.2.0-07 - Remove configuration for klez_filter scanner as it duplicates work of the pattern_filter [SME: 1620] * Tue Jun 20 2006 Filippo Carletti 1.2.0-06 - Expand goodrcptto on group create/modifiy/delete events [SME: 1616] * Mon Jun 5 2006 Gordon Rowell 1.2.0-05 - Improve peformance of pattern_filter plugin [SME: 1532] - TODO: Remove obsolete code and comments from that plugin * Wed May 17 2006 Gordon Rowell 1.2.0-04 - Allow all mail for domains which are being forwarded to internal mail servers [SME: 1253] * Thu Apr 6 2006 Gavin Weight 1.2.0-03 - Revert back to loglevel 8 from 6. [SME: 503] * Thu Mar 23 2006 Charlie Brady 1.2.0-02 - Disable use of smtp-forward plugin (probably temporarily) in DelegateMailServer mode, to avoid mail looping problem. Always use qmail-queue plugin (for now). [SME: 1121] * Wed Mar 15 2006 Charlie Brady 1.2.0-01 - Roll stable stream version. [SME: 1016] * Fri Feb 17 2006 Charlie Brady 1.0.2-04 - Exempt local networks from dnsbl lookup. [SME: 830] * Fri Feb 10 2006 1.0.2-03 - Call queue/smtp-forward to connect to DelegateMailServer instead of queueing locally when DelegateMailServer is set [SME: 710] * Mon Feb 6 2006 1.0.2-02 - Enable resolvable_fromhost check by default, and add whitelistsenders config for local domains. [SME: 638] * Sun Feb 5 2006 1.0.2-01 - Roll new tarball. [SME: 651] * Sun Feb 5 2006 1.0.1-21 - Remove unused patterns.default remnants. Ensure that all templates2expand directories are populated only by createlinks script. [SME: 651] * Sat Feb 4 2006 1.0.1-20 - Expand badhelo template during ip-change event, and remove bogus expansions /var/qmail/control/badhelo templates. [SME: 651] * Fri Feb 3 2006 Shad L. Lords 1.0.1-19 - Add missing template-begin file in rhsbl directory [SME: 596] * Fri Feb 3 2006 1.0.1-18 - Expand config/relayclients in network-(create|delete) events [SME: 649] * Thu Feb 2 2006 1.0.1-17 - Add template for invalid_resolvable_fromhost configuration file [SME: 638] * Mon Jan 30 2006 Charlie Brady 1.0.1-16 - Fix warnings during template expansion, if spamassassin and/or clamd is not installed/configured. Remove dependencies on packages which are optional. Ensure that clamav group exists before installation. Remove one redundant template fragment (which consisted of only comments). [SME: 606] * Sat Jan 28 2006 Shad L. Lords 1.0.1-15 - Add support for rhsbl entries to db [SME: 596] * Thu Jan 26 2006 Charlie Brady 1.0.1-14 - Remove remnant mailrules.default templates and template expansions. [SME: 454] * Wed Jan 25 2006 Gordon Rowell 1.0.1-13 - Add defaults qpsmtpd{Bcc} == disabled and qpsmtpd{BccUser} == maillog - To enable mail logging: - Create maillog user - config setprop qpsmtpd Bcc enabled - signal-event email-update [SME: 13] * Wed Jan 18 2006 Gordon Rowell 1.0.1-12 - Really reduce default qpsmtpd{LogLevel} to LOGINFO (6) [SME: 503] * Wed Jan 18 2006 Gordon Rowell 1.0.1-11 - Reduce default qpsmtpd{LogLevel} to LOGINFO (7) [SME: 503] * Thu Jan 12 2006 Charlie Brady 1.0.1-10 - Fix goodrcptto and mailrules templates for single domain pseudonym entries. [SME: 368] * Thu Oct 13 2005 Gordon Rowell 1.0.1-09 - Default RequireResolvableFromHost to "no" [SF: 1269382] * Thu Oct 13 2005 Gordon Rowell 1.0.1-08 - SIGHUP [s]qpsmtpd to re-read config in email-update [SF: 1252072] * Mon Oct 10 2005 Gordon Rowell 1.0.1-07 - And finally, the env directory [SF: 1313800] * Mon Oct 10 2005 Gordon Rowell 1.0.1-06 - And the config directory [SF: 1313800] * Mon Oct 10 2005 Gordon Rowell 1.0.1-05 - Need to create ssl directory to allow template expansion [SF: 1313800] * Fri Oct 7 2005 Gordon Rowell 1.0.1-04 - And the path to the runenv directory [SF: 1313800] * Fri Oct 7 2005 Gordon Rowell 1.0.1-03 - And fix up path to config directory [SF: 1313800] * Fri Oct 7 2005 Gordon Rowell 1.0.1-02 - Remove symlinks from sqpsmtpd directory [SF: 1313800] * Fri Oct 7 2005 Gordon Rowell 1.0.1-01 - Roll new tarball, including patches to 1.0.0-11 * Fri Oct 7 2005 Gordon Rowell 1.0.0-11 - Added missing = to max_size parameter for clamav plugin [SF: 1308976] * Thu Oct 6 2005 Gordon Rowell 1.0.0-10 - Added db defaults for qpsmtpd{LogLevel}=='8' and $qpsmtpd{RequireResolvableFromHost}=='yes' [SF: 1314202] * Thu Sep 22 2005 Gordon Rowell 1.0.0-09 - Allow mail to root@domain. If you want to block it, db accounts setprop root Visible internal [SF: 1252375] * Thu Sep 22 2005 Gordon Rowell 1.0.0-08 - And pick correct value from clamav entry: [SF: 1245756] $qpsmtpd{MaxScannerSize} || $clamav{StreamMaxLength} || "25M"; * Thu Sep 22 2005 Gordon Rowell 1.0.0-07 - Configure qpsmtpd{MaxScannerSize}, defaulting to 25MBytes [SF: 1245756] * Thu Sep 22 2005 Gordon Rowell 1.0.0-06 - Set separate softlimit values for data/stack/locked [SF: 1298123] * Thu Sep 22 2005 Gordon Rowell 1.0.0-05 - Set memory_threshold to 1 so that qpsmtpd writes all mail messages to disk so that scanners can look at them. Default is 10K [SF: 1298343] * Mon Aug 29 2005 Gordon Rowell 1.0.0-04 - Updated Requires for qpsmtpd to 0.31 [SF: 1231314] - Change paths to match Peter Holtzer's RPMs - /usr/share/qpsmtpd/ instead of /usr/lib/qpsmtpd [SF: 1231314] - Updated Requires for plugins to pick up new paths [SF: 1231314] - Remove symlinks from /var/service[s]qpsmtpd since they can now be done with environment or qpsmtpd config variables [SF: 1231314] - Remove plugins auth/cvm_unix_local, check_norelay and check_badrcptto_patterns which are now in the qpsmtpd tarball [SF: 1231314] * Mon Aug 29 2005 Gordon Rowell 1.0.0-03 - Fix sqpsmtpd script to call sslio with -u and -U args [SF: 1257284] * Wed Aug 24 2005 Gordon Rowell 1.0.0-02 - Configure qpsmtpd{RBLList} with comma separator, but allow either since people are used to colons and we then don't have to do a db migration for beta1 -> beta2 [SF: 1267737] * Fri Aug 19 2005 Gordon Rowell - [1.0.0-01] - Package renamed to smeserver-qpsmtpd * Thu Aug 18 2005 Shad L. Lords - [0.0.4-27sme01] - Change e-smith-clamav to smeserver-clamav * Thu Aug 18 2005 Gordon Rowell - [0.0.4-27] - Expand goodrcptto in domain-* events [SF: 1257199] * Tue Aug 16 2005 Charlie Brady - [0.0.4-26] - Fix uid/gid which sslio wrapper runs as for sqpsmtpd. [SF: 1257284] - Add Requires headers for e-smith-clamav and e-smith-spamassassin. * Mon Aug 15 2005 Charlie Brady - [0.0.4-25] - Change name of plugins RPM in Requires: header. [SF: 1242326] * Wed Jul 27 2005 Gordon Rowell - [0.0.4-24] - Enabled check_basicheaders, requiring a From and Date header. - Configure db default smtpd{MaxDateOffset}==0. Set it to a non-zero value (e.g. 366) to reject mail with silly dates. [SF: 1244977] * Tue Jul 19 2005 Charlie Brady - [0.0.4-23] - Remove explicit pathnames in db opens. [SF: 1216546 (Shad)] * Mon Jul 18 2005 Charlie Brady - [0.0.4-22] - Fix metadata OUTPUT_PATH to OUTPUT_FILENAME [SF: 1237193] * Mon Jul 18 2005 Charlie Brady - [0.0.4-21] - Fix up db default qpsmtpd{tnef2mime} -> smtpd{tnef2mime} so it is actually enabled by default [SF:1227668 (Shad)] * Wed Jul 13 2005 Charlie Brady - [0.0.4-20] - Fix errors in SSL PEM file template expansion [SF: 1237193] * Tue Jul 12 2005 Charlie Brady - [0.0.4-19] - Added Michael Weinberger's smeserver-qpsmtpd-tnef2mime - [SF:1227668] - Added config db defaults to enable plugin * Thu Jun 16 2005 Charlie Brady - [0.0.4-18] - Remove bogus /var/service/qpsmtpd/peers/{0,local} directories (this time for sure, Rocky!) [SF: 1210727] * Tue Jun 14 2005 Charlie Brady - [0.0.4-17] - Small patch from Gordon to fix cvs interaction. * Mon Jun 13 2005 Charlie Brady - [0.0.4-16] - Add Obsoletes header for e-smith-ssl-mailfront. [SF: 1219069] * Sun Jun 12 2005 Charlie Brady - [0.0.4-15] - Remove bogus /var/service/qpsmtpd/peers/{0,local} directories, and fix typo. [SF: 1210727] * Tue May 31 2005 Charlie Brady - [0.0.4-14] - Fix location of templates-begin files. [SF: 1210727] * Tue May 24 2005 Charlie Brady - [0.0.4-13] - Add "access" default property for qpsmtpd and sqpsmtpd services. [SF: 1205847] - Make sure that empty templates-begin files exist in peers/{0,local} templates directories. * Wed May 11 2005 Gordon Rowell Thu May 11 2005 --> Thu May 05 2005 or Wed May 11 2005 or Thu May 12 2005 or .... - [0.0.4-12] - Fix up config/relayclients - need a dot after network blocks * Wed May 11 2005 Gordon Rowell Thu May 11 2005 --> Thu May 05 2005 or Wed May 11 2005 or Thu May 12 2005 or .... - [0.0.4-11] - Also regenerate goodrcptto in {user,pseudonym}-modify, since details about the account may have changed * Wed May 11 2005 Gordon Rowell Thu May 11 2005 --> Thu May 05 2005 or Wed May 11 2005 or Thu May 12 2005 or .... - [0.0.4-10] - Actually regenerate goodrcptto in the events mentioned in 0.0.3-01 (typo in createlinks) * Fri May 06 2005 Charlie Brady - [0.0.4-09] - Add type and status defaults for qpsmtpd and sqpsmtpd services. * Wed May 4 2005 Gordon Rowell 0.0.4-08 - Fixed up SMTP Authentication status mismatch * Wed May 4 2005 Gordon Rowell 0.0.4-07 - Clean up configuration, using "runenv" file for each service - Check various properties to determine whether to enable plugins * Wed May 4 2005 Gordon Rowell 0.0.4-06 - Move mailpatterns defaults to e-smith-email * Wed May 4 2005 Gordon Rowell 0.0.4-05 - New arguments to auth_cvm_unix_local to allow AUTH to be enabled/disabled for smtp or ssmtp: enable_smtp no enable_ssmtpd yes - Checks config db defaults for [s]smtpd{Authentication} * Wed May 4 2005 Gordon Rowell 0.0.4-04 - Remove spurious return statement * Wed May 4 2005 Gordon Rowell 0.0.4-03 - Fix auth_cvm_unix_local to actually check with CVM - TODO: auth-cram-md5 and auth-local (?) * Sat Apr 30 2005 Gordon Rowell 0.0.4-02 - Check for relayclient in check_badrcptto_patterns - Actually check that the user exists in the prototype auth module * Sat Apr 30 2005 Gordon Rowell 0.0.4-01 - Added Provides: e-smith-smtpd to ease migration from e-smith-mailfront * Sat Apr 30 2005 Gordon Rowell 0.0.3-04 - Move badrcpto_patterns into a configuration file - Updated comment blocks in plugins - Parameterised a number of qpsmtpd config files - TODO: Database defaults, finalise parameterisation * Fri Apr 29 2005 Gordon Rowell 0.0.3-03 - Renamed auth module to auth_cvm_unix_local * Fri Apr 29 2005 Gordon Rowell 0.0.3-02 - Added auth_cvm-unix-local for AUTH LOGIN and AUTH PLAIN - TODO: Actually check with CVM - currently uses colon separated plain text config/flat_auth_pw * Fri Apr 29 2005 Gordon Rowell 0.0.3-01 - Regenerate goodrcptto in {user,pseudonym}-{create,delete} - thanks Paul Nesbit - Split qpsmtpd-plugins-openfusion into separate RPM - Note: mailer-daemon now works due to change I suggested in check_goodrcptto: match on full string, then match again on string with extension stripped - thanks Gavin Carr - Unset RELAYCLIENT in check_norelay (probably not required) * Tue Apr 26 2005 Gordon Rowell - [0.0.2-03] - Pass correct parameter to check_goodrcptto - TODO: mailer-daemon is currently being denied due to goodrcptto extension folding * Tue Apr 26 2005 Gordon Rowell - [0.0.2-02] - Added plugins/check_badrcptto_patterns to check for bang, shriek and double at paths. - Added plugins/check_norelay to allow specific hosts to be denied relaying * Tue Apr 26 2005 Gordon Rowell - [0.0.2-01] - Added plugins/virus/patterns_filter, based on Gavin Carr's exe_filter, but without the dependency on Email::MIME. This is a simple-minded filter, which doesn't care about MIME boundaries (as per the mailfront version). * Mon Apr 25 2005 Gordon Rowell - [0.0.1-03] - Fixed path to clamav socket in 80clamdscan (currently unused) - Parameterised many of the templates - TODO: Need to parameterise rshbl - Added a set of qpsmtpd plugins from Gavin Carr of OpenFusion: http://www.openfusion.com.au/labs/qpsmtpd/ - TODO: Need norelayclient setting (to deny relay from router) - TODO: sqpsmtpd needs testing - fails with (maybe just from stunnel client) "421 See http://smtpd.develooper.com/barelf.html" * Thu Apr 21 2005 Gordon Rowell - [0.0.1-02] - Initial cut of sqpsmtpd * Thu Apr 21 2005 Gordon Rowell - [0.0.1-01] - Initial packaging %prep %setup %build perl createlinks #we have issue upgrading from older rpms because of this link in a folder that was a link #https://bugzilla.redhat.com/show_bug.cgi?id=975909 #workaround to remove after SME11 alpha1 rm -rf root/var/service/sqpsmtpd/config/dkim rm -rf root/var/service/uqpsmtpd/config/dkim DAEMONS=" qpsmtpd sqpsmtpd uqpsmtpd " for daemon in $DAEMONS do PEERS_CONFIG="root/etc/e-smith/templates/var/service/$daemon/config/peers" mkdir -p $PEERS_CONFIG/0 mkdir -p $PEERS_CONFIG/local DISABLE_LOCAL=" 09karma 10earlytalker 12count_unrecognized_commands 15helo 16resolvable_fromhost 19loadcheck 20rhsbl 22dnsbl 221spf 223dmarc 23naughty 34badrcptto_ext 70spamassassin " for file in $DISABLE_LOCAL do echo "# $file disabled for local connections" > $PEERS_CONFIG/local/$file done DISABLE_EXTERNAL=" 34badrcptto 65disclaimer " for file in $DISABLE_EXTERNAL do echo "# $file disabled for external connections" > $PEERS_CONFIG/0/$file done done SQP_FOLDER=../../../sqpsmtpd/config/ UQP_FOLDER=../../../uqpsmtpd/config/ ( cd root/etc/e-smith/templates/var/service/qpsmtpd/config/plugins for file in * do [ -e ../peers/0/$file ] || ln -s ../../plugins/$file ../peers/0/$file [ -e ../peers/local/$file ] || ln -s ../../plugins/$file ../peers/local/$file #sqpsmptd [ -e $SQP_FOLDER/peers/0/$file ] || ln -s ../../../../qpsmtpd/config/plugins/$file $SQP_FOLDER/peers/0/$file [ -e $SQP_FOLDER/peers/local/$file ] || ln -s ../../../../qpsmtpd/config/plugins/$file $SQP_FOLDER/peers/local/$file #uqpsmptd [ -e $UQP_FOLDER/peers/0/$file ] || ln -s ../../../../qpsmtpd/config/plugins/$file $UQP_FOLDER/peers/0/$file [ -e $UQP_FOLDER/peers/local/$file ] || ln -s ../../../../qpsmtpd/config/plugins/$file $UQP_FOLDER/peers/local/$file done ) %install rm -rf $RPM_BUILD_ROOT (cd root ; find . -depth -print | cpio -dump $RPM_BUILD_ROOT) rm -f %{name}-%{version}-%{release}-filelist /sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ --dir /var/service/qpsmtpd "attr(1755,root,root)" \ --dir /var/log/qpsmtpd "attr(2750,root,root)" \ \ --dir /var/service/sqpsmtpd "attr(1755,root,root)" \ --dir /var/log/sqpsmtpd "attr(2750,root,root)" \ \ --dir /var/service/uqpsmtpd "attr(1755,root,root)" \ --dir /var/log/uqpsmtpd "attr(2750,root,root)" \ \ --file /var/service/sqpsmtpd/sqpsmtpd "attr(0755,root,root)" \ --dir /var/spool/qpsmtpd "attr(2750,qpsmtpd,clamscan)" \ --dir /var/lib/qpsmtpd/karma "attr(2750,qpsmtpd,qpsmtpd)" \ --dir /var/lib/qpsmtpd/dmarc "attr(2750,qpsmtpd,qpsmtpd)" \ --dir /home/e-smith/dkim_keys "attr(2750,root,qpsmtpd)" \ --dir /var/service/qpsmtpd/config/dkim "attr(2750,qpsmtpd,qpsmtpd)" \ \ --file /usr/local/bin/qplogsumm.pl "attr(0755,root,root)" \ --file /sbin/e-smith/systemd/qpsmtpd-tcpsvd "attr(0554,root,root)" \ --file /sbin/e-smith/systemd/qpsmtpd-init "attr(0554,root,root)" \ > %{name}-%{version}-%{release}-filelist %pre /sbin/e-smith/create-system-user qpsmtpd 453 \ 'qpsmtpd system user' /var/service/qpsmtpd /bin/false /usr/sbin/groupadd -r clamav 2>/dev/null || : # stop and remove runit services # ease the transition between runit and systemd if [ $1 -gt 1 ] ; then if [ -e /var/service/qpsmtpd/run ] ; then /usr/bin/sv d qpsmtpd /usr/bin/sv d qpsmtpd/log fi fi if [ $1 -gt 1 ] ; then if [ -e /var/service/sqpsmtpd/run ] ; then /usr/bin/sv d sqpsmtpd /usr/bin/sv d sqpsmtpd/log fi fi %pretrans TEMPLATES_DIR=/etc/e-smith/templates/var/service/qpsmtpd/config/peers [ -L $TEMPLATES_DIR/0 ] && rm -f $TEMPLATES_DIR/0 [ -L $TEMPLATES_DIR/local ] && rm -f $TEMPLATES_DIR/local [ -L /var/service/sqpsmtpd/config ] && rm -f /var/service/sqpsmtpd/config [ -L /var/service/uqpsmtpd/config ] && rm -f /var/service/uqpsmtpd/config [ -L /etc/e-smith/templates/var/service/qpsmtpd/config/peers/0/06auth_imap ] && rm -f /etc/e-smith/templates/var/service/qpsmtpd/config/peers/0/06auth_imap [ -L /etc/e-smith/templates/var/service/qpsmtpd/config/peers/0/06auth_imap ] && rm -f /etc/e-smith/templates/var/service/qpsmtpd/config/peers/0/06auth_imap true %post #Fix spool perms on clam upgrade if [[ -d /var/spool/qpsmtpd ]]; then chown qpsmtpd:clamscan /var/spool/qpsmtpd; fi # workaround to remove after SME11 alpha1 [ -L /var/service/sqpsmtpd/config/dkim ] || ln -s ../../qpsmtpd/config/dkim /var/service/sqpsmtpd/config/dkim [ -L /var/service/uqpsmtpd/config/dkim ] || ln -s ../../qpsmtpd/config/dkim /var/service/uqpsmtpd/config/dkim true %clean rm -rf $RPM_BUILD_ROOT %files -f %{name}-%{version}-%{release}-filelist %defattr(-,root,root)