Release Notes: Security bug CVE-2005-3088 (password exposure in fetchmailconf) was fixed. Further fixes around the -P/--port/--service options were made. Missed lock file error checks were added. NTLM/MSN can be configured in fetchmailconf, and their use now causes an error if not compiled into fetchmail. Daemon mode reinitialization was fixed. The --quit option was fixed. fetchmail now tries to obtain its FQDN host name by default. SSL connections are now shut down properly. The manual page was clarified in several places.
Release Notes: The --service option was revived. SSL socket setup problems now result in a socket error (not an auth error as before). getaddrinfo() errors are logged. A bogus service name resolver error was fixed. The config dump now properly describes the --envelope setting. The documentation was updated. envelope <num> Delivered-To was fixed. Build problems on newer Mac OS X, Solaris (with --disable-nls), FreeBSD 4 (Kerberos IV), and systems where SSL requires -ldl were resolved.
Release Notes: A Mac OS X build problem was fixed. AUTH NTLM was fixed to work outside MSN, and AUTH MSN (for MSN) was added. When polling multiple IMAP folders, fetchmail properly expunges between switching them. The expunged message count was fixed.
Release Notes: The "--limit --flush" option combination was replaced by a new --limitflush option that is less dangerous. A bug in the --with-hesiod option was fixed. Building on non-Linux systems now works again. Various documentation updates were made. More IPv6 support was added. --with-gssapi fixes were done. The --enable-inet6 option was removed. BSMTP envelopes were fixed, and fetchmailconf is prevented from waiting for input from an invisible password prompt.
Release Notes: Three important multidrop bugs that could lead to server addresses/aliases not being recognized were fixed. The netsec and -T options and their code was removed as the inet6_apps library this depended on is long gone. The gettext code was removed from the fetchmail package, which is now shipped as bzip2. The Python script is now optimized and byte-compiled upon installation. Some internal code shuffling and cleanups were made resulting in fewer "make" recursions and the removal of alloca().
Release Notes: This release fixes CAN-2005-2335 (a remote code injection vulnerability through a malicious POP3 server's UIDL replies). RFC-821/2821 conformance was fixed by not emitting a blank between MAIL FROM: and the address, which caused mail loss on some sites. The POP2 driver now checks for authentication failures. The APOP/RPOP drivers no longer attempt to get SIZE for a message range. Fetchmail has been handed to new maintainers and has changed its home site.
Release Notes: A remote root vulnerability in POP3/UIDL handling was fixed (CAN-2005-2335, requisite compromised/malicious POP3 server). Tracepolls now works. A socket leak with SSL failures was plugged. The Received: header no longer contains garbage with smtphost set. The PID file is now FHS compliant. --silent now also works for ODMR. Warning emails now have a From: header. IMAP can use passwords of arbitrary length from the rc file. Oversized messages are now deleted with --flush unless in daemon mode. lock_release was renamed to fix a Darwin namespace collision. The manual page was corrected and updated.
Release Notes: The build system was switched to GNU automake. The SMTP/LMTP client no longer uses a blank between the command and angle bracket. Bounces now have a Subject and NULL envelope sender. Trio is used to replace snprintf on systems that lack it. Many minor and documentation fixes.
Release Notes: This release includes updates for many translations. It also features POP3 NTLM support, as well as various bug fixes.