1. Forum
  2. USENET
  3. comp.mail.sendmail

  • sendmail 8.18.2 available

    From Claus =?iso-8859-1?Q?A=DFmann?=@INVALID_NO_CC_REMOVE_IF_YOU_DO_NOT_POST_ml+sendmail(-no-copies-please)@esmtp.org to comp.mail.sendmail on Sat Dec 27 11:27:31 2025
    From Newsgroup: comp.mail.sendmail

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Proofpoint, Inc., and the Sendmail Consortium announce the availability
    of sendmail 8.18.2. This version fixes several minor problems and
    enhances the experimental support for SMTP MTA Strict Transport
    Security (MTA-STS). For a complete list, see the release notes below.

    Please send bug reports and general feedback to one of the addresses
    listed at: http://www.sendmail.org/email-addresses.html https://www.proofpoint.com/us/products/email-protection/open-source-email-solution

    The version can be found at
    https://ftp.sendmail.org/sendmail.8.18.2.tar.gz https://ftp.sendmail.org/sendmail.8.18.2.tar.gz.sig https://ftp.sendmail.org/sendmail.8.18.2.tar.Z https://ftp.sendmail.org/sendmail.8.18.2.tar.Z.sig

    (or via ftp://ftp.sendmail.org/pub/sendmail/)

    SHA-256 checksums
    SHA256(sendmail.8.18.2.tar.Z)= f2e0595ed6def1c3f37fc935a8d232ff8c1f8bdedeb52ea814ec9fc61dedbcba
    SHA256(sendmail.8.18.2.tar.Z.sig)= b4034b766329c6782630ec8256d8e5a192b0d0aedd1c5faa1854aec393339f6f
    SHA256(sendmail.8.18.2.tar.gz)= 1a085faa8ace52cffde2f5e9bc611bdb5f81481caaabf46f0437b719ca089d2f
    SHA256(sendmail.8.18.2.tar.gz.sig)= 35bbcc3cf8d0d4ee85930d59b528b1388c7a99f0b186b4d68fbf5f7fad907602

    You either need the first two files or the third and fourth,
    i.e., the gzip'ed version or the compressed version and the
    corresponding sig file. The PGP signature was created using
    the Sendmail Signing Key/2025, available on the web site (http://www.sendmail.com/sm/open_source/download/) or on
    the public key servers (keyid 0x0C19D37CB7E6543E).

    Since sendmail 8.11 and later includes hooks to cryptography, the
    following information from OpenSSL applies to sendmail as well.

    PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY
    SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING
    TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME
    PARTS OF THE WORLD. SO, WHEN YOU IMPORT THIS PACKAGE TO YOUR
    COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL
    SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE
    YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT
    AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS ARE NOT LIABLE FOR
    ANY VIOLATIONS YOU MAKE HERE. SO BE CAREFUL, IT IS YOUR RESPONSIBILITY.

    SENDMAIL RELEASE NOTES


    This listing shows the version of the sendmail binary, the version
    of the sendmail configuration files, the date of release, and a
    summary of the changes in that release.

    8.18.2/8.18.2 2025/12/27
    Avoid adding a second To: header to DSNs, instead any
    additional addresses are appended to an existing
    To: header (this also applies to Cc: and Bcc:).
    Fix matching of wildcard SANs in the experimental support
    for SMTP MTA Strict Transport Security (MTA-STS).
    Problem reported by Dilyan Palauzo.
    The experimental support for SMTP MTA Strict Transport
    Security has been significantly rewritten to handle
    the problems caused by it being tied to the domain
    of a RCPT address (instead to an SMTP server for
    all the domains it handles - compare DANE).
    The most visible change is that an SMTP transaction
    where the first RCPT has an STS policy will have
    only RCPTs with the same domain instead of all
    RCPTs going to the same servers (MX).
    Accordingly, MTA-STS can be disabled per RCPT domain
    by adding access map entries of the form
    STS:domain NO
    Successful deliveries to RCPTs which have an STS
    policy show STS=OK in the to=... stat=Sent log entry.
    If an STS policy for a RCPT could not be fulfilled
    then the RCPT is not being sent and an error containing
    the string "STS" is logged.
    MaxQueueAge is now observed for all types of QueueSortOrder
    even those which internally skip some code (including
    the MaxQueueAge check).
    On some systems the rejection of a RCPT by a milter could
    silently be ignored.
    Increase size for an internal buffer which can contain AUTH
    data because XOAUTH2 could use very long tokens.
    Patch from Frank Schmirler.
    Portability:
    Add support for Darwin 24 and 25.
    LIBSM: Fix compilation of vfscanf.c with gcc-15. Problem
    reported by Jaroslav +akarvada of RedHat.
    MAILSTATS: Fix compilation with gcc-15. Problem reported by
    Jaroslav +akarvada of RedHat.
    New Files:
    cf/feature/same_domain_only.m4
    devtools/OS/Darwin.24.x
    devtools/OS/Darwin.25.x
    -----BEGIN PGP SIGNATURE-----

    iQIcBAEBAgAGBQJpT5htAAoJEAwZ03y35lQ+ZzoP/2MaS4E5a5Q9er1/DQgackdE cNoz7gEr/XVRaKy04ttb6PSS/xjFn7ax7GX6KuT5nF+EhL8lcuWxvBSRzR0Qry1g WRTuqQwnNY7KxK4h7amBgCYXcx7EY84awMA5PoYI5QnbcwLk3Ko9u3dgelJ1DSCW kX3cTCKR2wgVMw0SOnWJVOQXIAoOcH84yG3LaD0gRbww80JWKV9n+81/kBzg/ihF 5xOdaTWHGCvC5a8HstvDxcbXuamGlCkq/Hr7n2oBdOj+FjmMb1EvGA1d2h1Jltam ueqFa5MArmBJWEKKFXE6J9FKNbhUnNRbGIcSfUI+j5d666t3jSdlrYd+dAwXwUDV BzIJnicjVj2aoNLKoGWQXFw3uKu2GJB6ipCmO1dZEAxMSuDLyJoCo88T1QsGdd+Q lQcSyQCy8WCmSSjqA8wu+w5X8KhDMvk+KDorq1TktmxWmDY7wroU61rs0KzCTCod FZX3eyJUaTy6yL1DWbUKugzhNsYXhRdMXvwnDBxERSwApywq1mfUC1zJUXtYiGce 7k2dtbEqf3cAEfypXiNckaAQ0KyJbHF5GunKe2aL1LKmJdS8as2mFfB3nV/f9SnO SqMpRe8g3X07XrgNMWZAB/Gm66wHhLhyjzO3031rD5h0WSCEvgh98pXSiMotBqb8 qPFsD2u32aYUFAHU/x4T
    =ippw
    -----END PGP SIGNATURE-----
    --- Synchronet 3.21a-Linux NewsLink 1.2