Open Source Release 8.14.4

Sentrion Overview Sentrion Platform Sentrion REAC Sentrion Mimecast Hard Appliances Virtual Appliances

Overview Policy Compliance Secure Content Filtering Cloud Partner Enterprise Community

Overview Download Security Support News Documentation Tips & Tricks DKIM FAQ Misc Milters

Overview Directory Synchronization Messaging Architecture Review High Volume Mail HIPAA Policy QUICKStart Implementation Performance Tuning Training Services Overview Message Routing and
Configuration Message Policy
Management Connection Control /
Attack Prevention Directory Configuration
and Management

Overview Sendmail Partners Milter Community Industry Organizations System Integrators & Distributors

Overview Silver Support Gold Support Platinum Support Open Source Support Security Advisories Contact Support

Overview Customers Events Press Room Board & Investors Management Careers Contact Us

Overview Ask the Experts Security Chalk Talks Collateral Product Reviews & Awards IP Reputation Check Real-time Outbreak Monitor

		HOME \| CUSTOMER LOGIN

Sentrion Message Processors

Sentrion Application Store

Services

Partners

Support

Company

Resources

Open Source

Sendmail Open Source MTA

The 8.14.4 release of the sendmail open source MTA addresses a number of issues found in the previous release, including:

Some certificate authorities do not properly check the requests they are signing and therefore allow spoofing via an embedded NUL in the CN entry. Some checks have been added to deal with "bogus" CNs (see below and doc/op/op.*).
A workaround for a Linux resolver problem has been added to avoid core dumps.
The value of headers, e.g., Precedence, Content-Type, et.al., was not extracted correctly thus preventing them from being recognized properly; leading spaces were not stripped (which was an unintended side effect of an earlier change) and therefore comparing them with expected values (e.g., "first-class" for Precedence) did not work.
Between 8.11.7 and 8.12.0 the length limitation on a return path was erroneously reduced.

For a full list of changes see the release notes.

Please send bug reports and general feedback to one of the following addresses.

This version of the sendmail MTA can be downloaded here:

or on a mirror near to you.

MD5 signatures:

1b23d5000c8e7bfe82ec1a27f2f5fdc5 sendmail.8.14.4.tar.gz
0986e83fefad74477e5473860eb7a3dc sendmail.8.14.4.tar.gz.sig
db975437af4b08ed3b88deaccec26f89 sendmail.8.14.4.tar.Z
8a5740dff8a85e0d5a8d754bf73c0b28 sendmail.8.14.4.tar.Z.sig

Errata

(2010-01-04)
If you use FEATURE(`ldap_routing') without the required option -T<TMPF> then 8.14.4 attempts to add this but may fail. If you encounter this problem, either add the required option to FEATURE(`ldap_routing') or use cf/feature/ldap_routing.m4 from 8.14.3.

Since sendmail 8.11 and later includes hooks to cryptography, the following information from OpenSSL applies to sendmail as well.

PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. WHEN YOU IMPORT THIS PACKAGE TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE, OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS, OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE, YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU.

THE AUTHORS ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE HERE. SO BE CAREFUL, IT IS YOUR RESPONSIBILITY.

Show Release Notes