Sam released a new batch of updates on most of the Courier packages, here is the list with the important changes:

Courier-authlib 0.60.0:

• Fix some compiler errors in authvchpw
• userdb: allow underscores in login names
• courierlogger: use OPEN_MAX or sysconf(_SC_OPEN_MAX) to pick the highest available file descriptor for the lock file
• License update to GPL3

Courier-imap 4.2.0

• COPYING updated to GPL 3
• Updated man pages to Docbook XML 4.4
• IMAP performance improvements
• Ignore SIGPIPE errors in couriertcpd, preventing couriertcpd from being terminated if the stderr logger crashes.
• Logging changes - include remote port number in IMAP and POP3 logs
• If using courier-analog, must upgrade to version 0.15
• Try to autodetect clock skew

Note: Please don’t update if you are not sure. There have been issues reported and I haven’t tested it myself. I will test it asap…

Note 2: I’ve checked it myself and there is a problem with version 0.60 and 0.60.1 of courier-auth. Currently working with the developers to get it worked out.

Sorry for the late post but I wanted to check the software myself before announcing the updates and let you update your systems. Sam Varshavchik has been busy in April and created fixes and small updates for most of the Courier software stack. The ones that concern us are:

Courier-Auth was updated to 0.59.3

• Minor fixes in several man pages — workaround for some minor issues with Docbook XML stylesheets
• Added support for CRAM authentication in the vchkpw module
• Fix a memory leak when authpipe module is enabled, but the actual authpipe script/external prog is not installed
• Fix several other pedantic leaks flagged by a static code analysis tool, that occur only after courier-authlib already runs out of memory

Courier-IMAP was updated to 4.1.3

• Fix several pedantic memory leaks flagged by a static code analysis tool, that occur only after the server already runs out of memory
• Updated man pages to Docbook XML 4.4
• Fix parsing of raw 8bit headers

Courier Maildrop was updated to 2.0.4

• Updated manual pages to Docbook XML V4.4
• Include the make dat script (the man page is already here)

Updating should be easy, just follow the install instructions as usual.

As promised, sooner than I expected myself, here is some more information on the update of Courier Auth to version 0.59.2. It wasa minor upgrade where the following items where fixed:

• Fix pedantic compilation warnings
• Implement SSL-encrypted MySQL connections
• Update documentation to Docbook XML V4.4

Installing or upgrading is done by just following the install instructions and restarting the Auth daemon. Please don’t forget to do:

chmod o+x /usr/local/var/spool/authdaemon

During my week of absence it looks like there happened a lot. Postfix got a new major release bringing it to 2.4.0 and Courier authlib got an update bringing it to 0.59.2. I haven’t looked at the releases themselves but I will test them this week to see if these releases can be used without breaking anything in our current configuration.

Another thing I’m glad to notice is that there is some movement in the development of Dspam. It’s been rather quiet the last few months but Jonathan Zdziarski has released version 3.8.0 from 3.6.8. Mostly because of a lot of new features. I haven’t tried it myself but the user mailinglist is buzzing with positive results. It is however an unofficial release and he hopes he can announce something really positive in the time to come that will really move the project forward. Can’t wait to find out what that will be…

I will post my findings on Postfix and Courier Authlib as soon as possible. Dspam will take a bit longer as it is more complex and I need time for other stuff as well, sorry…

Just letting you know that the Courier-auth library got updated with a small bug fix that has no affect on us. It is a fix concerning anonymous LDAP binds and we don’t use LDAP in our setup. But it will explain why you will a see a new version when you go and download it. I’m using it myself and there are no changes to the workings in our setup, it works perfectly.