README.zeitform zeitform-qmail-toaster, version 0.21 2003-2004 alex pleiner, alex@zeitform.de (c) zeitform Internet Dienste http://alex.zeitform.de/qmail-new/qmail.html Patches for a zeitform qmail toaster based on qmail 1.03 --------------------------------------------------------- USAGE: patch -p0 < zeitform-qmail-toaster-x.x.patch OVERVIEW: This patch is just a collection of other patches found on the web or provided by some developers around. This patch-collection (toaster-patch) has been tested under Linux only. Use with care. The following patches are included: BUGFIXES * errno (Phil Edwards): fix for the changes in the new glibc (2.3.1 or newer). This patch is not needed on systems with an older glibc but won't hurt. http://memoryhole.net/qmail/glibc-2.3.x.patch http://news.gmane.org/article.php?id=13960&group=gmane.mail.qmail.general http://www.qmail.org/moni.csi.hu/pub/glibc-2.3.1/ * qmail-local-fix (Erik Sjoelund): fixes a bug (a logic error) in qmail-local. http://memoryhole.net/qmail/bugfix.qmail-local.patch http://www.ornl.gov/its/archives/mailing-lists/qmail/2000/10/msg00696.html * 0.0.0.0 (Scott Gifford): Qmail ought to recognize 0.0.0.0 as a local IP address, but doesn't by default. That may allow spammers to spoof you, and certainly means that Qmail is incorrect. http://memoryhole.net/qmail/qmail-0.0.0.0.patch http://www.suspectclass.com/~sgifford/qmail/qmail-0.0.0.0.patch * sendmail-flagf (David Phillips): sendmail emulation doesn't correctly support the -f flag as it should http://memoryhole.net/qmail/sendmail-flagf.patch http://david.acz.org/software/sendmail-flagf.patch * link-sync (Frank Denis): Qmail was designed for BSD-like filesystems. And it is unreliable under Linux because it assumes that link() is a synchronous operation. This is not the case with EXT2 and ReiserFS. http://www.jedi.claranet.fr/qmail-tuning.html http://www.jedi.claranet.fr/qmail-link-sync.patch * isoc (James Craig Burley) This patch improves ISO C conformance of qmail code -- specifically, of qmail-lspawn, qmail-newmrh, qmail-newu, qmail-pop3d, qmail-popup, qmail-rspawn, and qmail-smtpd. http://www.jcb-sc.com/qmail/patches/qmail-isoc.patch EXTENSIONS * qmailqueue (Bruce Guenter): The QMAILQUEUE patch is used as a generic way to insert another program into the Qmail structure. It is merely a support patch (i.e. supports other uses), and has no real additional functionality in and of itself. QMAILQUEUE is needed to run qmail-scanner (antivirus, anti-spam). http://memoryhole.net/qmail/qmailqueue-patch http://www.qmail.org/qmailqueue-patch Usage: QMAILQUEUE="/path/to/queue-replacement" * oversizedns (Christopher K. Davis): get qmail to handle oversize DNS packets. (Other DNS servers sometimes send DNS packets that are bigger than they ought to be.) http://www.ckdhr.com/ckd/qmail-103.patch * qregex (Andrew St. Jean): With REs (Regular Expresions) it becomes quite easy to filter out email addresses that contain invalid characters or simply aren't a real address. http://www.arda.homeunix.net/store/qmail/ Usage: see URL above or README.qregex * starttls (Frederik Vereulen): support for STARTTLS ESMTP extension old: http://memoryhole.net/qmail/qmail-1.03-tls-20021228.patch old: http://inoa.net/qmail/qmail-1.03-tls.patch http://inoa.net/qmail-tls/netqmail-1.04-tls-20040120.patch Usage: see documentation in patch file or README.tls * maildir++ (Bill Shupp): This patch adds maildirquota (Maildir++) support to qmail-pop3d and qmail-local. It was created because when vpopmail switched to maildirquotas, a user's quota usage was not decreased after deleting mail via qmail-pop3d. http://shupp.org/patches/qmail-maildir++.patch * rfc2821 (Matthias Andree): changes qmail-remote to skip over MX servers that greet with codes 4xx or 5xx and try the next MX for real RFC-2821 compliance (Sendmail and Postfix do that). http://www-dt.e-technik.uni-dortmund.de/~ma/qmail/patch-qmail-1.03-rfc2821.diff * smtp_auth and size (Erwin Hoffmann): add SMTP_AUTH to qmail-smtpd (CRAM-MD5, PLAIN and LOGIN). This works with vpopmail versions above 5.4.0 without modification. Please note that you must omit the hostname argument in the qmail-smtpd startup file as documented in README.auth. ESMTP has a way of explicitly defining this size limit up front, which allows valid clients and standards-compliant email servers to avoid spending the time to send the large email before discovering that it's too big. http://www.fehcom.de/qmail/smtpauth.html Usage: echo 50000000 > /var/qmail/control/databytes * pop3_auth_and_capa (Alex Pleiner) adds AUTH to qmail-popup (CRAM-MD5 only). This is based on Erwin Hoffmann's code and slightly modified. This patch also adds the CAPA command to qmail-popup. http://alex.zeitform.de/qmail/qmail-popup-auth_cram_md5/ * capa_pop3d (Tom Clegg): adds CAPA to qmail-pop3d. Based on qmail-capa-pop3d.patch and the capa features of pop3_auth_and_capa for qmail-popup. http://tomclegg.net/qmail/qmail-capa-pop3d.patch * pop3d-stat (Dwayne Koonce) This patch changes number of messages returned in qmail-pop3d's reponse to STAT. It now returns number of not deleted messages. Returned number of all messages. http://alex.zeitform.de/qmail/qmail_single_patches/qmail-pop3d-stat.tls.patch * viruscan (Russel Nelson, mods by zeitform): this patch blocks executable attachments at smtp level. The modifications bring back Charles Cazabon's EXECUTABLEOK from version 1.1 http://qmail.mirrors.space.net/qmail-smtpd-viruscan-1.3.patch Usage: Set EXECUTABLEOK to disable this Edit /var/qmail/control/signatures (see below) * chkuser2 (Antonio Nati): this patch checks for valid users based on vpopmail before accepting mails for local domains http://www.interazioni.it/opensource/chkuser/ Usage: Edit chkuser_settings.h and recompile * qmail-queue-custom-error (Flavio Curti) Adds the possibility for a qmail-queue-replacement to offer custom error (=bounce) messages (used by simscan when configured with --enable-custom-smtp-reject=y) Part of simscan (http://www.inter7.com) FURTHER ACTION: * modify the file /var/qmail/bin/update_tmprsadh (read README.tls for further instructions). create crontab entry: 01 01 * * * /var/qmail/bin/update_tmprsadh > /dev/null 2>&1 * create the signature file like this: cat </var/qmail/control/signatures # Windows executables seen in active virii TVqQAAMAA TVpQAAIAA # Additional windows executable signatures not yet seen in virii TVpAALQAc TVpyAXkAX TVrmAU4AA TVrhARwAk TVoFAQUAA TVoAAAQAA TVoIARMAA TVouARsAA TVrQAT8AA # .ZIPfile signature seen in SoBig.E and mydoom: # selective zip blocking is not really working - block all or none #UEsDBBQAA #UEsDBAoAAA # .GIF file found in a previous Microsoft virus making the rounds. #R0lGODlhaAA7APcAAP///+rp6puSp6GZrDUjUUc6Zn53mFJMdbGvvVtXh2xre8bF1x8cU4yLprOy EOF HISTORY: v0.21: updated maildir++ (duplicate free bug) updated chkuser 2.0.8b v0.20: updated chkuser 2.0.7 (removed mfcheck), added qmail-queue-custom-error v0.19: updated chkuser 2.0.5 (edit chkuser_settings.h) v0.18: dropped size patch, upgraded smtp_auth by Erwin Hoffmann (0.56, includes size extension). Take care: smtp_auth versions before 0.43 are buggy if you disable CRAM-MD5. v0.17: upgraded TLS patch (20040419) v0.16: added logging for mfcheck, viruscan, badrcptto updated mfcheck. v0.15: change: update of qregex to include bad HELO checks announce: website for zeitform qmail toaster http://alex.zeitform.de/qmail-new/qmail.html v0.14: changes: removed all code from Vladimir Kabanov and reimplemented AUTH CRAM-MD5 for qmail-popup. Sorry Vlad, your code was very useful, but we need to upgrade vpopmail. This toaster patch now supports the current version of vpopmail. SMTP AUTH is now done by the patch provided by Erwin Hoffmann. change: chkusr for vpopmail > 5.2.25 change: modification to chkusr for qmail-ext v0.13: fix: fixed the CAPA in qmail-pop3d.c that still used puts() fix: fixed qregex memleak in qmail-smtpd.c (according to qmail-1.03-qregex-memleak-fix.patch) added qmail-pop3d-stat patch updated tls patch and added README.tls v0.12: updated Russel's viruscan patch (1.3) v0.11: added isoc patch v0.10: added chkusr patch (needs vpopmail < 5.3.25) added documentation for various patches to qmail-showctl and qmail-control.9 v0.9 : testing stuff (not published) v0.8 : added Russel's viruscan patch. v0.7 : added bugfix for size patch, removed *.orig and *.rej files created by this patch v0.6 : added smtpd-auth-close3 (for morercpthosts) v0.5 : fixed a bug causing smtp to fail. After applying the size patch qmail-smtp sended "250 8BITMIME" followed by "250 SIZE" This is wrong. v0.4 : added rfc2821 patch *** DO NOT USE *** v0.3 : added some bugfixes and extensions from *** DO NOT USE *** http://memoryhole.net/qmail/. qmail-local-fix, 0.0.0.0, sendmail-flagf, size v0.2 : added link-sync v0.1 : Initial collection LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.