summaryrefslogtreecommitdiff
path: root/libexec/spamd
AgeCommit message (Expand)Author
2017-03-16define the role of spamd-setup a little better;Jason McIntyre
2017-03-16use one way to show filter rules, not two. the bits and pieces of theJason McIntyre
2017-01-23check EAGAIN in the correct place,Bob Beck
2017-01-23Switch spamd to nonblocking descriptors so we can count on getting aBob Beck
2017-01-17- spamd(8)'s -l accepts an IP address as argument to bind(2) and it callsRicardo Mestre
2016-11-30Check return value of tls_config_set_protocols(3) and bail out in case ofRicardo Mestre
2016-11-08Remove redundant & when clearing hostname variable, as per otto@'s requestRicardo Mestre
2016-11-07Replace bzero(3) with memset(3)Ricardo Mestre
2016-10-20- Remove useless var assignmentRicardo Mestre
2016-09-06must close our fd unconditionally and not just in the !TLS case; tls_closeHenning Brauer
2016-07-13Adjust existing tls_config_set_cipher() callers for TLS cipher groupJoel Sing
2016-05-17tyopJeremie Courreges-Anglas
2016-04-27Remove pledge(2)'s that are called before chroot(2) since in the near futureRicardo Mestre
2016-04-10per rfc, ehlo responses contain hostname, then options. from dyn+bsdTed Unangst
2016-03-25- Both checks for pw are not needed since it was already done at the start ofmestre
2016-03-10- add a define for "_spamd" user like others OpenBSD daemons;Gleydson Soares
2015-12-12Remove NULL-checks before free(). ok tb@mmcc
2015-12-10tighten the pledge for spamd, from Ricardo Mestre <serial@helheim.mooo.com>Bob Beck
2015-12-08Initially pledge spamdBob Beck
2015-12-05adjust to newer tls_read/_write semantics.Henning Brauer
2015-12-02in response to EHLO, don't offer STARTTLS if we already completed theHenning Brauer
2015-12-02I misread the standard when adding TLS; clients are supposed to start overHenning Brauer
2015-12-02fix error messages to say tls_write after tls_write and not tls_read...Henning Brauer
2015-11-29Document that the pfdev check for 63 is /dev/fd/ only contains those nodesTheo de Raadt
2015-09-10read, tls_read, and tls_write return ssize_tBob Beck
2015-09-10fix after libtls api changesBob Beck
2015-08-12start replacing some \*([GL]t;Jason McIntyre
2015-08-12divert-to a table needs an address family;Jason McIntyre
2015-07-27use file system path (.Pa) semantic markup macros where appropriate.Igor Sobrado
2015-05-18Change spamd to use divert-to instead of rdr-to.Reyk Floeter
2015-04-18Convert many atoi() calls to strtonum(), adding range checks and failureTheo de Raadt
2015-04-14wrap a long lineTheo de Raadt
2015-03-12Use poll(2) instead of select(2). A pointer to the struct pollfdTodd C. Miller
2015-02-22Set the TLS ciphers to "compat" mode, restoring the previous behaviour.Joel Sing
2015-02-15Don't use Aq macros when <> is intended; they are not the same thing.Anthony J. Bentley
2015-02-12Change TLS_PROTOCOLS_DEFAULT to be TLSv1.2 only. Add a TLS_PROTOCOLS_ALLJoel Sing
2015-02-07put -G and it's args back onto one line in SYNOPSIS, to avoid having mandocJason McIntyre
2015-02-07add STARTTLS support, using the shiny libtls.Henning Brauer
2015-01-16Replace <sys/param.h> with <limits.h> and other less dirty headers whereTheo de Raadt
2015-01-13Move debug printf for duplicate af to correct location.Todd C. Miller
2015-01-13Remove bogus getopt.h include.Todd C. Miller
2015-01-13Use address-family specific lists of addr/mask entries instead ofTodd C. Miller
2015-01-08Avoid a crash (free of bogus pointer) when there is a syntax errorTodd C. Miller
2014-12-30Use a 1MB realloc() increment instead of an 8KB one for the configTodd C. Miller
2014-12-29Minor cleanup:Todd C. Miller
2014-11-23Delete a bunch of unnecessary #includesPhilip Guenther
2014-11-22/dev/random has created the same effect as /dev/arandom (and /dev/urandom)Theo de Raadt
2014-10-11Fix manpage: -y only takes interface names, and doesnt take ip addresses.Landry Breuil
2014-10-11Userland reallocarray() audit.Doug Hogan
2014-10-09obvious reallocarray() conversionsTheo de Raadt