-
Notifications
You must be signed in to change notification settings - Fork 3
/
TLS_ACKNOWLEDGEMENTS
56 lines (47 loc) · 2.26 KB
/
TLS_ACKNOWLEDGEMENTS
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
- Walcir Fontanini <[email protected]>
* tested on Solaris 2.5 and and reported missing "snprintf()"
-> was fixed in pfixtls-0.1.2
* contributed the script to add fingerprints
contributed/fp.csh
- Matti Aarnio <[email protected]> (www.zmailer.org)
* updated pfixtls_dump to need fewer strcat and strcpy calls.
- Cerebus <[email protected]>
* Missing variable initialization in client mode enable STARTTLS
negotiation even when not wanted.
-> fixed in pfixtls-0.2.8
- Bodo Moeller <[email protected]>
* The SSL connection was not shut down at the end of the session, because
SSL_CTX_set_quiet_shutdown() was set. This however did not mean "do a
quiet shutdown" but "do not shutdown SSL".
-> fixed in pfixtls-0.3.3
- Jeff Johnson <[email protected]>
* noted that the patch code will not compile with SSL disabled anymore,
because a ´#ifdef HAS_SSL #endif´ encapsulation was missing in
smtp/smtp_connect.c. This must have been in since the very beginning
of client mode support (0.2.x).
-> fixed in 0.3.6
- Craig Sanders <[email protected]>
* noted that the Received: header does not contain sufficient information
whether a client certificate was not requested or not presented.
He also reminded me that the session cache must be cleared when
experimenting with the setup and certificates, what is not explained
in the documenation.
-> fixed in 0.4.4
- Claus Assmann <[email protected]>
* pointed out that the Received: header logging about the TLS state violated
RFC822. The TLS information must be in comment form "(info)".
-> fixed in 0.6.3
- Wietse Venema <[email protected]>
* uncounted important suggestions to start the integration into the Postfix
mainstream code.
* code adjustments in the dict_*() database code to allow easier inclusion
and use for session caching, and this is only the beginning :-)
-> started reprogramming Postfix/TLS to fit both Wietse's and my
requirements as of 0.6.0
- Damien Miller <[email protected]>
* Found mismatch between documentation and code with regard to logging.
-> fixed in 0.6.6
- Deti Fliegl <[email protected]>
* Provided an initial patch to support SubjectAlternativeName/dNSName
checks.
-> added in 0.8.14