summaryrefslogtreecommitdiffstats
path: root/qmail-smtpd.c
Commit message (Collapse)AuthorAgeFilesLines
* increase recipients limit to 300manuel2019-06-121-1/+1
|
* SMTP: limit max errors to 20manuel2019-06-111-24/+40
|
* max recipients: make error message more consistentmanuel2019-06-111-1/+1
|
* Add max recipients limitmanuel2019-06-111-1/+10
|
* Fix compile warnings...Manuel Mausz2019-06-111-5/+6
|
* Fix CVE-2011-1431manuel2019-04-101-1/+4
|
* Remove client certificate left oversmanuel2019-02-011-12/+0
|
* Disable TLS 1.0 only for smtp auth/submissionmanuel2018-12-261-4/+7
|
* Disable TLS 1.0manuel2018-12-041-1/+1
|
* Enable PRIORITIZE_CHACHA per defaultmanuel2018-09-171-2/+3
|
* More OpenSSL 1.1 compatibilitymanuel2018-06-281-0/+4
|
* OpenSSL 1.1 compatibilityManuel Mausz2018-06-271-97/+80
| | | | | | | | | | | | | | This adds compatibility for OpenSSL 1.1 Since renegotiation is removed from TLS 1.3 we also removed support for authentication via client certificates (control/tlsclients). In general this is still supported by TLS 1.3 however I'm just lazy and we don't need this feature anyway. This also adds optional support for OpenSSL configuration commands for qmail-smtpd and qmail-remote. Commands are loaded from control/opensslconf. For a list of supported commands see https://www.openssl.org/docs/man1.0.2/ssl/SSL_CONF_cmd.html#SUPPORTED-CONFIGURATION-FILE-COMMANDS
* Disable SSLv3 and enable prefer server ciphersmanuel2018-04-161-1/+2
|
* Initialize session early for loggingmanuel2018-04-161-0/+1
|
* ignore AUTH parameters in MAIL FROMmanuel2018-04-041-1/+2
|
* add X-UD-Smtp-Session and remove ip from authed clientsmanuel2018-04-041-2/+55
|
* SMTPUTF8: convert UTF-8 domains to IDNAmanuel2017-08-181-1/+30
| | | | | | | | | | | | | This isn't entirely correct according to RFC 6531 as it's better to not convert at all. However this would require we additionally add the UTF-8 form to qmails local recipient users/domains. Plus our SMTPUTF8 implementation doesn't convert outgoing UTF-8 mails if receiving MTA doesn't support SMTPUTF8. So mail forwarding might generate a bounce the user very likely doesn't understand. As MTAs who support SMTPUTF8 most likely also support the IDNA form, always converting is probably a good trade-off.
* add support for SMTPUTF8manuel2017-08-171-1/+22
|
* make qmail support EC keysmanuel2016-08-071-2/+2
|
* implement tls before auth as environment variablemanuel2016-03-211-8/+10
|
* don't announce SMTP AUTH commands if not availablemanuel2016-03-211-7/+10
|
* disable SSLv2manuel2016-03-011-0/+1
|
* add SMTP DANE supportmanuel2015-07-041-11/+10
|
* add support for ECDH as well as custom ec+dh params in certificatemanuel2015-06-231-6/+66
|
* Use DH parameters from OpenSSL and remove support for ephemeral RSAmanuel2015-06-221-28/+64
| | | | This adds support for DH parameters from 1024 to 8192 bits.
* export TLS-Session to environmentmanuel2014-02-141-0/+1
|
* make commands argument mandatorymanuel2014-01-271-7/+7
|
* [PATCH] protect qmail-smtpd from large received-linesmanuel2014-01-271-1/+1
| | | | | | | | | | | This patch corrects a small programming error in the blast() routine of qmail-smtpd.c. This is sometimes referred to as the "Guninski" bug, in reference to its discoverer. see * http://www.guninski.com/qmailcrash.html * http://thedjbway.b0llix.net/qmail/patches/qmail-1.03.smtpd-blast.patch
* check for bad chars only for for non-relay sessionsmanuel2013-06-071-1/+1
| | | | | check introduced by ee944357ee374402f20eb1297a0b596f7ef4ea8d (qmail-smtpd-relay-reject.gentoo)
* disable CRAM_MD5 supportmanuel2013-02-061-1/+1
|
* [PATCH] rewriteuser-0.1-qmail-smtpdmanuel2013-02-061-0/+42
|
* [PATCH] qmail-smtpd_auth-ssl-fix-sppmanuel2013-02-061-2/+11
|
* [PATCH] qmail-1.03-r17-greetdelaymanuel2013-02-061-0/+36
|
* [PATCH] realrcpttomanuel2013-02-051-1/+26
|
* [PATCH] mfcheck: invalid-envelope-sender-logmanuel2013-02-051-1/+3
|
* [PATCH] qmail-1.03-env-servercertmanuel2013-02-051-2/+7
|
* [PATCH] log relay attemptsmanuel2013-02-051-1/+5
| | | | qmail-1.03-r17-logrelay
* [PATCH] check envelope sender's domain for validitymanuel2013-02-051-0/+32
| | | | qmail-1.03-r17-mfcheck
* [PATCH] Adding SPP framework for qmail-smtpdmanuel2013-02-051-2/+22
| | | | qmail-1.03-r17-spp
* [PATCH] Only allow one envelope recipient for bouncesmanuel2013-02-051-0/+5
| | | | | | | Refuse messages from the null envelope sender if they have more than one envelope recipient nullenvsender-recipcount
* [PATCH] require STARTTLS before AUTHmanuel2013-02-041-4/+22
| | | | | | | only allows AUTH after STARTTLS when compiled with TLS and TLS_BEFORE_AUTH defined auth-after-tls-only
* [PATCH] badrcptto supportmanuel2013-02-041-11/+88
| | | | qmail-gentoo-1.03-r16-badrcptto-morebadrcptto-accdias
* [PATCH] Reject some bad relaying attemptmanuel2013-02-041-0/+16
| | | | qmail-smtpd-relay-reject.gentoo
* [PATCH] qregex-starttls-2way-auth-20060423-mmmanuel2013-02-041-19/+739
|
* qmail 1.03 importmanuel2013-02-041-0/+421
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-12 01:23:41 +0000