Age | Commit message (Collapse) | Author |
|
works.
* When a message is sent encrypted, add the sender certificate so that
the sender can decrypt it too.
* When a message is signed and encrypted, first sign it and then encrypt
it. This changes the usual order of encrypting and then signing, and it has
the shortcoming of making bigger messages. However, this is the way that
most clients work with S/MIME, and so for compatibility with other programs,
we will send signed, then encrypted, instead of encrypted, then signed.
Hmm... should we sign the encrypted part?
* Avoid the first RSET smtp command, as this causes delays in some evily
managed servers.
|
|
|
|
body->nested.part instead of b->nested.part in the
do_detached_signature_verify function, and save its body and mime
headers in create_local_cache. Now all signed messages should
verify correctly.
* Protect against potential crash bug in write_passfile function by
checking if text != NULL. text can only be null if there are no
passwords to save. We assume we could get write_passfile called
with null arguments, so this is just to protect that.
* Add handling of corner cases to several functions by initializing some
variables. Reported and patched by James Jerkins.
* When selecting the certificate/key pair to encrypt/decrypt the password
file choose it in this order:
- if -pwdcertdir is given look for certificates there, if nothing
there, we bail out;
- otherwise we look in the default directory, if anything there
and it matches to be a key/cert pair, we use it;
- otherwise we check if smime_init() has been called. If not
we call it;
- we check if a key/cert pair has been found with smime initialized,
if so, use it and copy it to the default directory;
- if not, check if there is anything in the default smime directories
(.alpine-smime/private and .alpine-smime/public), and in this
case copy it to the default.
- otherwise we bail. We will eventually create a certificate/key
pair for the user;
- finally, if we called smime_init(), we call smime_deinit().
Throughout this process, if smime_init() was not called before
we tried to get the cert/key pair we exit this process without
ps_global->smime->inited set, so that other process that need
to call smime_init() get the right structure initialized. This is
done because we might pick a cert/key pair to decrypt the password
file.
|
|
|
|
content that is needed for validation.
|
|
|
|
/usr/local/etc/openssl, under the advice of Sam Hathaway.
* Add management certificate support for containers.
* Fix crashing bugs introduced in version 2.19.9, which did not allow
alpine to start with the -passfile and use a remote pinerc. Reported by
Ulf-Dietrich Braumann.
* fix a bug which was introduced in version 2.19.9, where Alpine would
free a certificate associated to a key after encryption, and so this
could not be used during decryption. We use X509_dup to copy the cert
and so make the copy be freed, and not the original.
* S/MIME: sign messages using intermediate certificates when needed and
possible.
|
|
|
|
off.
* Fix compilation bug that made build fail if passfile was not defined.
|
|
* S/MIME configuration screen would deinitialize smime, not allowing
it to send encrypted or signed messages.
* Add documentation for /loser option in definition of external servers.
* crashing bug in certificate management screen due to a BIO_free() call
of memory that had not been allocated.
* When the password file is decrypted, smime is inited. If smime is inited
before the .pinerc is read, some values might not be correctly set.
* When a password file exists, and S/MIME is enabled, encrypt it by either
using an existing key/certificate pair. The key is saved separately
in ~/.alpine-smime/.pwd, or in the directory specified by the
-pwdcertdir command line option.
|
|
* Fix windows strings to match version.
|
|
|
|
|
|
failed when attempting to sign it, with and "Error writing pipe"
error.
* Using a .pinerc file outside the home directory made Alpine not find
the .alpine-smime directory with certificates.
* Configuration screen for S/MIME adds ability to manage certificates.
(currently available to users who manage certificates in
directories, not in containers, which will be available in the next
alpha release.)
|
|
* Forwarding messages with attachments of content-type multipart, failed when
attempting to signed it, with and "Error writing pipe" error.
|
|
|
|
for patches.freeiz.com/alpine/. Work in progress.
* prototype function tigetstr in pico/osdep/terminal.c
* folders encoded in modified utf7 are transformed their names to a human
readable utf8.
* New attempt to fix smime support in Alpine. Messages sent by alpine
with or without attachments should validate in all servers and in
all folder formats.
|
|
* Fixes to documentation to update old washington.edu/alpine site
for patches.freeiz.com/alpine/
|
|
* Add backward search support for Pico and file browser.
* Style tag in html body causes all text to disappear until we find
a </style> tag.
* Shorten name of temporary file for a mailcap command.
|
|
* check bounds and tie strings off to improve security. Contributed by
James Jerkins.
* Alpine crashed when a user attempted to add a folder collection, due
to bug in GET_NAMESPACE in imap4r1.c.
|
|
Alpine.
* When writing the .pinerc file, lines could not be longer than
10,000 characters, or else this caused corruption in the .pinerc data.
Now they are allowed to be of any size.
* Fix a problem that made Alpine remove files before they were open by
the viewer. It requires that the user has an equivalent to a command
such as "ps auxww" to list the list of processes. The default is
"/bin/ps auxww", but it can be changed at compile time with the option
--with-ps-cmd.
* Remove -lregex from linker flags when building --with-supplied-regex.
* Fix _INIT_ token for reply quote string to include support for 8-bit
in personal names.
|
|
* Alpine computes the signature of a signed message on a different message than the one
it sends, because of this, messages that are sent can not be validated either in the
sent-mail folder, nor in the server that receives such message.
|
|
|
|
had been established, but lost immediately afterwards.
* Small fixes to pine.hlp (alignment issues)
* Add server name to debug in pine_tcptimeout function.
|
|
* Update OpenSSL configuration of Mac OSX.
* If Homebrew is installed, use it; else
* if Macports is installed, use it; else
* if Fink is installaed, use it; else
* use openssl as distributed in the Mac.
|
|
* Upgrade UW-IMAP to Panda IMAP from https://github.com/jonabbey/panda-imap.
* Replace tabs by spaces in From and Subject fields to control for size in
screen of these fields. Change only in index screen display.
|
|
the sequence bit, so we reinstate it by calling mail_sequence
on the sequence parameter to the msgno_exclude_* function. No bump
in version yet.
|
|
forever. Todo: see how this can be improved.
* Add support for UID EXPUNGE in selected folders.
|
|
* Fix in configure script for recognition of SSL files in Ubuntu 12.04
* Alpine does not attempt to automatically reopen a collection that
was not opened due to cancellation by the user. Instead, the user
must try to open it explicitly.
* few improvements on new /tls1, /tls1_1, etc. options.
|
|
* Add /tls1, /tls1_1, /tls1_2 and /dtls1 to the definition of a
server to use different ways to connect using ssl, for example
{server.com/tls1} will attempt to connect to server.com at the ssl
imap port (port 993) and establish a connection using TLSv1. These
flags can be used in conjunction with the /ssl flag, the ssl flag is
redundant. Conversely, however, the /ssl flag does not imply any of
these flags; the /ssl flag means SSLv3 or, if not available, SSLv2 in
the SSL port.
* WebAlpine: add _GNU_SOURCE to make pubcookie build.
* On my way to make 'make dist' and 'make distcheck' actually work.
|
|
transformation of dates in locales to utf-8, this made the fix
worse than then problem. Now it got fixed. This was reported by
Werner Scheinast.
|
|
attachment in an aggregate save, unless cursor was positioned on a message with
a deleted attachment. Reported by Florian Herzig.
* Rewrite of configure script: ldap is checked for after ssl, which is checked
after crypto, which is checked for after dl library. Set defaults for include
and lib directories based on SSLDIR. Joint work with Florian Herzig.
* Update contact information (remove alpine-contact@u.washington.edu and
add chappa@gmx.com)
|
|
non-compliant servers do not understand uppercase content-type, such as
those of GMX.de.
* Transformation of UTF-8 to MUTF7 was not being done when creating a folder
in an IMAP server.
|
|
to utf-8, to include days and months.
|
|
values appear garbled or incomplete in the screen. Reported by Werner
Scheinast.
* Quoted string in URL Viewers configuration variable were not
unquoted before passing to viewer.
|
|
* Pico: Justification works without need to define a quote string, it
allows justification of blocks indented with spaces.
|
|
simply clearing it.
|
|
* Fixes to configure script so that it will not require PAM for every system.
* Fix to configure script so that it will use CPPFLAGS instead of
CPPCFLAGS, and so the --with-ssl-include-dir option take effect
during the build. Fix by Ulf-Dietrich Braumann.
* Fix in WebAlpine: do not use deprecated dereference in pointer,
needs to use tcl_getstringresult() instead. Reported by Ulf-Dietrich
Braumann.
* Fix in configure script to detect location of tcl library; add
/usr/local in FreeBSD and fix a bug in configure script that used
$alpine_TCLINC instead of $alpine_TCLINC/tcl.h. Reported and fixed
by Werner Scheinast.
* Move SSL configurations from UW-IMAP to configure script.
|
|
included in all.patch, and later released when it has been thoroughly
tested.
|
|
|
|
* Pico: search backwards.
* do not allow List- headers to be set up by users in accordance with
RFC 2369.
* minor fixes for new justification support (add comparison of a line
with the previous *and* the next).
|
|
.pinerc -> some/other/file
|
|
|
|
from http://url.spec.whatwg.org
|
|
|
|
only contain spaces (ASCII 32). There is more to do to deal with TABs
and non-breaking spaces.
|
|
configure script.
|
|
space after the quote string were considered paragraphs by themselves,
now they are considered part of a paragraph, as they are. Based on
joint work with Jeff Franklin for the Pine 4.5X series.
|
|
|
|
* Changes to avoud errors in compilation when -Wformat-security is used
* Remove RFC files from source code
|