src - OpenBSD base system

Age	Commit message (Collapse)	Author
2005-05-24	Remove -ansi as that means expose only C89 interfaces.	Todd C. Miller

2005-05-23	have to ignore SIGPIPE in the child too or a spammer can kill spamd just by	Mike Frantzen
	closing the connection while we're trying to write to it
2005-05-17	update FILES;	Jason McIntyre

2005-05-17	- describe start up better	Jason McIntyre
	- note that greylisting does stutter slightly - make clear role of spamdb and spamd.conf - few minor tweaks ok beck@
2005-05-15	move db->close to not hold this lock unnecssarily during long protracted	Bob Beck
	operations. ok millert@ ages ago.
2005-04-16	missing getopt choice; from dennis	Theo de Raadt

2005-04-14	Make spamd stutter at greylisted connections for a short period before talking	Bob Beck
	full speed. By default do this for 10 seconds. Many spammers disconnect by then. Adds -S option to select the amount of time greylisted connections will be stuttered at. feedback from jmc@, deraadt@, ok deraadt@
2005-03-12	asprintf in place of strdup really is kind of lame	Bob Beck
	ok millert@
2005-03-11	"Greytrapping" for spamd - allow for spamd greylisting to maintain	Bob Beck
	a list of spamtrap destination addresses in the spamd database. When a spamtrap address gets an attempted greylist delivery, blacklist the offending host for a day. Does not affect hosts already whitelisted. ok deraadt@, jmc@, dhartmei@ to get it in so it can be whacked on
2005-01-19	clarification; ok beck	Theo de Raadt

2004-12-04	fix a signal race which could kill unrelated processes.	Moritz Jodeit
	signal handler could be interrupted by another instance of itself because it was used for multiple signals and only one signal was blocked. ok beck@ henning@
2004-11-17	- \r\n fix for QUIT command	Bob Beck
	- Implement RSET in spamd - some virus scanning products (notably symantec's viruswall) spew a RSET into the smtp stream before every attempted delivery. (noticed by reitenba@fh-brandenburg.de and some others). This ensures such things can successfully talk to a spamd greylister. ok millert@ henning@
2004-10-05	Change the default passtime to 25 minutes,	Bob Beck
	MTA's with a quadratic retry schedule have a retry after 26 minutes, and then again after an hour, so this probably makes a lot more sense than the old 30 minute default. ok henning@
2004-10-05	change default to 451 for greylisting, thanks to a number of	Bob Beck
	people on misc, and some observations by Evan harris on the greylisting mailing list that a number of clustered mailers like aol behave better (and retry from the same IP) when they see a 451, but do not when they see a 450 (traditionally used for mailbox lock failure) 450 was the original for spamd, as the default for the tarpit is to encourage quick retries to punish blacklisted smtp servers more. This got carried over to the greylisting implementation, and isnt' really optimal for that case. ok millert@, henning@, todd@
2004-09-18	This should be info, from mike@tric.ru	Bob Beck
	ok henning@
2004-09-15	ARGSUSED before signal handler with unused signo	Theo de Raadt

2004-08-17	impliment QUIT, beck ok	Henning Brauer

2004-08-15	Expire entries that exactly match the time now in addition to ones	Todd C. Miller
	with an expire time in the past. From beck@, OK deraadt@
2004-08-08	spacing	Theo de Raadt

2004-07-04	two missing freeaddrinfo() -- leak; andrushock@korovino.net	Theo de Raadt

2004-07-04	typo; andrushock@korovino.net	Theo de Raadt

2004-06-29	absolutely no need to include machine/endian.h after sys/types.h and ↵	Michael Shalayeff
	sys/types.h after sys/param.h
2004-06-21	restrict address resolution to AF_INET for now	Jun-ichiro itojun Hagino

2004-06-21	use getaddr/nameinfo for address resolution. beck, henning ok	Jun-ichiro itojun Hagino

2004-04-03	fix logging. without -v, you get just the connection level, no mail data.	Daniel Hartmeier
	with -v, you get From/To/Subject at LOG_INFO, and the first ten body lines at LOG_DEBUG. ok beck@
2004-04-02	nextstate() can get passed a read(2) chunk containing multiple lines,	Daniel Hartmeier
	so separate lines before logging headers/body. doesn't make logging more verbose, just fixes the case where chunks contain multiple lines. ok beck@
2004-03-17	fix problem with counter and logging spotted by danh, where logging	Bob Beck
	would get messed up when the blacklist limit was hit. tested by danh@ and me ok cedric@
2004-03-16	sort options and escape a minus sign;	Jason McIntyre

2004-03-15	Add -B option, with maxblack limit to limit the number of blacklist	Bob Beck
	connections to something less than maxcon when greylisting. This ensures you don't completely run out of connections tarpitting spammers, and not allow real mail through. ok dhartmei@ millert@
2004-03-14	make window size adjustement on sockets only after the DATA	Bob Beck
	connection. This ensures that greylisted connections are not delayed by a small windows size, but blacklisted connections still have to send the body through a tiny window, and presumably the body is the vast majority of what is being sent anyway. ok dhartmei@ millert@
2004-03-13	Add signal handler to parent, so that when greylisting we don't need to	Bob Beck
	kill all three processes to make it go away. Adjust daemon() call and logging appropriately. ok henning@, millert@
2004-03-12	sort options;	Jason McIntyre

2004-03-12	paranoia and cleanup, ensure we use free then NULL everywhere.	Bob Beck
	ok millert@ dhartmei@
2004-03-12	Fix typo, spotted by Eduardo Alvarenga <eduardo@eduardo.lan.cei>	Bob Beck
	ok xsa@ henning@
2004-03-11	fix bug where custom 450 messages are not displayed,	Bob Beck
	found by yongari@kt-is.co.kr ok dhartmei@, millert@
2004-03-11	Remove sync() calls that immediately precede databse close(). Since	Todd C. Miller
	close() calls sync() itself the standalone sync() is a no-op. OK beck@
2004-03-11	Call db-sync() after each db modification since they aren't all that	Bob Beck
	frequent in the scheme of things and this avoids the possibility of database corruption. Run here for a week. ok millert@ deraadt@
2004-03-10	spaces	Theo de Raadt

2004-03-10	fix missing space, also from	Bob Beck
	yongari@kt-is.co.kr ok deraadt@
2004-03-10	add -b option to specify local bind address, sent by	Bob Beck
	yongari@kt-is.co.kr ok deraadt@
2004-03-05	Fix really dumb memory leak that would have long runnign large whitelist	Bob Beck
	servers having their pf update process growing massive as it leaked huge tracks of whitelist. ok millert@
2004-03-01	typo; we do have spamlogd(8) not spamlog(8);	Xavier Santolaria
	ok beck@
2004-03-01	uset inet_pton(3) instead of home grown address validator; some other cleanup	Otto Moerbeek
	ok beck@
2004-02-28	- ensure greylist entry expiry is not updated until actually whitelisted	Bob Beck
	to avoid keeping multiple grey entries around from a single host for extra time. - make -G work - paranoia and cleanup suggestions from deraadt@ ok millert@
2004-02-26	don't leak one here either.	Bob Beck

2004-02-26	don't leak an fd here.	Bob Beck

2004-02-26	Add ommitted copyright.	Bob Beck

2004-02-26	paranoia; beck ok	Theo de Raadt

2004-02-26	spaces	Theo de Raadt

2004-02-26	Add -g option for greylisting support for spamd. The greylisting techinque	Bob Beck
	originates from a paper by Evan Harris which can be found at http://projects.puremagic.com/greylisting/. This implementation makes spamd allow for non-blacklisted addresses to be treated as "greylisted". where they are tracked in a db file, and whitelisted by addition to a pf table when the same envelope from and to are retried from the same source IP address. Testing by many, ok deraadt@