Haraka 2.8.28 → 3.0.1

package/attachment_stream.js

@@ -1,118 +0,0 @@
-'use strict';
-
-const Stream = require('stream');
-
-class AttachmentStream extends Stream {
-    constructor (header) {
-        super();
-        this.header = header;
-        this.encoding = null;
-        this.paused = false;
-        this.end_emitted = false;
-        this.connection = null;
-        this.buffer = [];
-    }
-
-    emit_data (data) {
-        // console.log("YYY: DATA emit");
-        if (this.paused) {
-            return this.buffer.push(data);
-        }
-
-        if (this.encoding) {
-            this.emit('data', data.toString(this.encoding));
-        }
-        else {
-            this.emit('data', data);
-        }
-    }
-
-    emit_end (force) {
-        if (this.paused && !force) {
-            // console.log("YYY: end emit (cache)");
-            this.end_emitted = true;
-        }
-        else {
-            // console.log("YYY: end emit");
-            if (this.buffer.length > 0) {
-                while (this.buffer.length > 0) {
-                    // Don't use this.emit_data() here because we don't want to
-                    // re-buffer the data we're trying to emit, when we're
-                    // paused and forcing the end.
-                    const data = this.buffer.shift();
-                    if (this.encoding) {
-                        this.emit('data', data.toString(this.encoding));
-                    }
-                    else {
-                        this.emit('data', data);
-                    }
-                }
-            }
-            this.emit('end');
-        }
-    }
-
-    pipe (dest, options) {
-        const self = this;
-        this.paused = false;
-
-        const pipe = Stream.prototype.pipe.call(this, dest, options);
-
-        dest.on('drain', () => {
-            // console.log("YYY: DRAIN!!!");
-            if (self.paused) self.resume();
-        });
-        dest.on('end', () => {
-            // console.log("YYY: END!!");
-            if (self.paused) self.resume();
-        });
-        dest.on('close', () => {
-            // console.log("YYY: CLOSE!!");
-            if (self.paused) self.resume();
-        });
-
-        return pipe;
-    }
-
-    setEncoding (enc) {
-        if (enc !== 'binary') {
-            throw "Unable to set encoding to anything other than binary";
-        }
-        this.encoding = enc;
-    }
-
-    pause () {
-        // console.log("YYY: PAUSE!!");
-        this.paused = true;
-        if (this.connection) {
-            // console.log("YYYY: Backpressure pause");
-            this.connection.pause();
-        }
-    }
-
-    resume () {
-        // console.log("YYY: RESUME!!");
-        if (this.connection) {
-            // console.log("YYYY: Backpressure resume");
-            this.connection.resume();
-        }
-        this.paused = false;
-        if (this.buffer.length) {
-            while (this.paused === false && this.buffer.length > 0) {
-                this.emit_data(this.buffer.shift());
-            }
-            if (this.buffer.length === 0 && this.end_emitted) {
-                this.emit('end');
-            }
-        }
-        else if (this.end_emitted) {
-            this.emit('end');
-        }
-    }
-
-    destroy () {
-        // console.log("YYYY: Stream destroyed");
-    }
-}
-
-exports.createStream = header => new AttachmentStream (header)

package/bin/spf

@@ -1,48 +0,0 @@
-#!/usr/bin/env node
-
-// SPF test tool
-
-const nopt = require('nopt');
-const path = require('path');
-const base_path = path.join(__dirname, '..');
-const SPF = require(`${base_path}/spf`).SPF;
-const spf = new SPF();
-
-const parsed = nopt({ 'debug': Boolean, 'ip': String, 'helo': String, 'domain': String  });
-
-function print_usage () {
-    console.log('Usage: spf [--debug] --ip <ip> --helo <helo> --domain <domain>');
-    process.exit(1);
-}
-
-if (!parsed.ip || (parsed.ip && (!parsed.domain && !parsed.helo))) {
-    print_usage();
-}
-
-if (!parsed.debug) {
-    SPF.prototype.log_debug = function (str) {}
-}
-
-let domain;
-if (parsed.domain) {
-    domain = /@(.+)$/.exec(parsed.domain);
-    if (domain) {
-        domain = domain[1];
-    }
-    else {
-        domain = parsed.domain;
-    }
-}
-
-spf.check_host(parsed.ip, (domain ? domain : parsed.helo), null, function (err, result) {
-    if (err) {
-        console.log(`Error: ${err.message}`);
-        process.exit(1);
-    }
-    console.log([
-        `ip=${parsed.ip}`,
-        `helo="${(parsed.helo ? parsed.helo : '')}"`,
-        `domain="${(domain ? domain : '')}"`,
-        `result=${spf.result(result)}`
-    ].join(' '));
-});

package/chunkemitter.js

@@ -1,75 +0,0 @@
-'use strict';
-
-const EventEmitter = require('events').EventEmitter;
-
-class ChunkEmitter extends EventEmitter {
-    constructor (buffer_size) {
-        super();
-        this.buffer_size = parseInt(buffer_size) || (64 * 1024);
-        this.buf = null;
-        this.pos = 0;
-        this.bufs = [];
-        this.bufs_size = 0;
-    }
-
-    fill (input) {
-        if (typeof input === 'string') {
-            input = Buffer.from(input);
-        }
-
-        // Optimization: don't allocate a new buffer until
-        // the input we've had so far is bigger than our
-        // buffer size.
-        if (!this.buf) {
-            // We haven't allocated a buffer yet
-            this.bufs.push(input);
-            this.bufs_size += input.length;
-            if ((input.length + this.bufs_size) > this.buffer_size) {
-                this.buf = Buffer.alloc(this.buffer_size);
-                const in_new = Buffer.concat(this.bufs, this.bufs_size);
-                input = in_new;
-                // Reset
-                this.bufs = [];
-                this.bufs_size = 0;
-            }
-            else {
-                return;
-            }
-        }
-
-        while (input.length > 0) {
-            let remaining = this.buffer_size - this.pos;
-            if (remaining === 0) {
-                this.emit('data', this.buf); //.slice(0));
-                this.buf = Buffer.alloc(this.buffer_size);
-                this.pos = 0;
-                remaining = this.buffer_size;
-            }
-            const to_write = ((remaining > input.length) ? input.length : remaining);
-            input.copy(this.buf, this.pos, 0, to_write);
-            this.pos += to_write;
-            input = input.slice(to_write);
-        }
-    }
-
-    end (cb) {
-        let emitted = false;
-        if (this.bufs_size > 0) {
-            this.emit('data', Buffer.concat(this.bufs, this.bufs_size));
-            emitted = true;
-        }
-        else if (this.pos > 0) {
-            this.emit('data', this.buf.slice(0, this.pos));
-            emitted = true;
-        }
-        // Reset
-        this.buf = null;
-        this.pos = 0;
-        this.bufs = [];
-        this.bufs_size = 0;
-        if (cb && typeof cb === 'function') cb();
-        return emitted;
-    }
-}
-
-module.exports = ChunkEmitter;

package/config/data.uribl.excludes

@@ -1,202 +0,0 @@
-# List derived from SpamAssassin
-126.com
-163.com
-2o7.net
-4at1.com
-5iantlavalamp.com
-about.com
-adelphia.net
-adobe.com
-agora-inc.com
-agoramedia.com
-akamai.net
-akamaitech.net
-alexa.com
-amazon.com
-ancestry.com
-aol.com
-apache.org
-apple.com
-arcamax.com
-ask.com
-astrology.com
-atdmt.com
-att.net
-baidu.com
-bbc.co.uk
-bcentral.com
-bellsouth.net
-bfi0.com
-bing.com
-bridgetrack.com
-cafe24.com
-charter.net
-citibank.com
-citizensbank.com
-cjb.net
-classmates.com
-clickbank.net
-cnet.com
-cnn.com
-comcast.net
-com.com
-com.ne.kr
-corporate-ir.net
-cox.net
-craigslist.org
-cs.com
-custhelp.com
-daum.net
-dd.se
-debian.org
-dell.com
-directnic.com
-directtrack.com
-div.tk
-domain.com
-doubleclick.com
-dsbl.org
-earthlink.net
-ebay.com
-ebay.co.uk
-ebay.de
-ebayimg.com
-ebaystatic.com
-edgesuite.net
-ediets.com
-egroups.com
-emode.com
-example.com
-example.net
-example.org
-excite.com
-facebook.com
-fedex.com
-flickr.com
-freebsd.org
-free.fr
-f-secure.com
-gentoo.org
-geocities.com
-gmail.com
-gmx.net
-go.com
-godaddy.com
-googleadservices.com
-google.co.in
-google.com
-google.it
-grisoft.com
-hallmark.com
-hinet.net
-hotbar.com
-hotmail.com
-hotpop.com
-hp.com
-ibm.com
-incredimail.com
-investorplace.com
-ivillage.com
-joingevalia.com
-juno.com
-kernel.org
-li.tk
-livejournal.com
-lycos.com
-m7z.net
-mac.com
-macromedia.com
-mail.com
-mail.ru
-mailscanner.info
-marketwatch.com
-mcafee.com
-mchsi.com
-messagelabs.com
-microsoft.com
-military.com
-mindspring.com
-mit.edu
-monster.com
-mozilla.com
-msn.com
-myspace.com
-nate.com
-netflix.com
-netscape.com
-netscape.net
-netzero.net
-norman.com
-nytimes.com
-openoffice.org
-openxmlformats.org
-optonline.net
-osdn.com
-overstock.com
-pacbell.net
-pandasoftware.com
-passport.com
-paypal.com
-peoplepc.com
-plaxo.com
-prodigy.net
-p.tk
-radaruol.com.br
-real.com
-redhat.com
-rediff.com
-regions.com
-regionsnet.com
-rogers.com
-rr.com
-sbcglobal.net
-sec.gov
-sf.net
-shaw.ca
-shockwave.com
-smithbarney.com
-sourceforge.net
-spamcop.net
-speedera.net
-sportsline.com
-sun.com
-suntrust.com
-sympatico.ca
-tails.nl
-telus.net
-terra.com.br
-ticketmaster.com
-tinyurl.com
-tiscali.co.uk
-tom.com
-tone.co.nz
-t-online.de
-tux.org
-twitter.com
-uol.com.br
-ups.com
-usps.com
-verizon.net
-w3.org
-wamu.com
-wanadoo.fr
-washingtonpost.com
-weatherbug.com
-web.de
-webshots.com
-webtv.net
-wordpress.com
-wsj.com
-xmlsoap.org
-yahoo.ca
-yahoo.co.jp
-yahoo.co.kr
-yahoo.com
-yahoo.com.br
-yahoo.co.uk
-yahoogroups.com
-yimg.com
-yopi.de
-yoursite.com
-youtube.com
-zdnet.com

package/config/data.uribl.ini

@@ -1,37 +0,0 @@
-; If DBL not IPv6 compatible set:
-; not_ipv6_compatible=1
-
-[dbl.spamhaus.org]
-validate=^(?!127\.0\.1\.255)127\.
-rdns=1
-helo=1
-envfrom=1
-from=1
-msgid=1
-body=1
-no_ip_lookups=1
-custom_msg={uri} listed in {zone}; see http://www.spamhaus.org/query/dbl?domain={uri}
-
-[multi.uribl.com]
-validate=^127
-strip_to_domain=1
-; BLACK list only
-bitmask=2
-body=1
-custom_msg={uri} listed in {zone}; see http://lookup.uribl.com/?domain={uri}
-
-[multi.surbl.org]
-validate=^127
-strip_to_domain=1
-body=1
-
-;[fresh15.spameatingmonkey.net]
-;validate=^127
-;rdns=1
-;helo=1
-;envfrom=1
-;from=1
-;msgid=1
-;body=1
-;no_ip_lookups=1
-;custom_msg={uri} domain registered within the last 15 days; see http://spameatingmonkey.com/lookup/{uri}

package/config/spf.ini

@@ -1 +0,0 @@
-; See 'haraka -h spf' for options

package/docs/plugins/attachment.md

@@ -1,92 +0,0 @@
-attachment
-==========
-
-This plugin allows you to reject messages based on Content-Type within 
-the message or any MIME parts or on the filename of any attachments.
-
-Limitations
------------
-
-This plugin cannot detect forged MIME types where the sender is lying
-about the type.  The type is not confirmed in any way currently.
-
-
-Requirements
-------------
-
-To be able to check filenames inside archive files the npm module
-`tmp` is required and the `bsdtar` binary must be available (in
-/bin /usr/bin or /usr/local/bin).
-
-If either `tmp` or `bsdtar` are unavailable then the plugin will
-automatically disable expansion of archive files.
-
-
-Logging
--------
-
-At INFO level logging this plugin will output the filename and type
-of each attached file along with an MD5 checksum of the contents.
-The MD5 checksum is useful to check against www.virustotal.com
-
-
-Configuration
--------------
-
-* attachment.ini
-
-  - archive\_max\_depth
-    (default: 5)
-
-    The maximum level of nested archives that will be unpacked.
-    If this is exceeded the message will be rejected.
-
-  - archive\_extns
-    (default: .zip,.tar,.tgz,.taz,.z,.gz,.rar,.7z) 
-
-    File extensions that should be treated as archives.
-    This can be any file type supported by bsdtar.
-
-  - allow\_encrypted\_archives
-    (default: false)
-
-    Allow archives that cannot be read by bsdtar because
-    they are encrypted.
-
-  - timeout
-    (default: 30)
-
-    Timeout in seconds before the plugin will abort.
-
-* attachment.filename.regex
-
-  This file contains a list of regular expressions, one per line that 
-  will be tested against each filename found within a message.
-  The first regexp to match will cause the message to be rejected.  
-  Any invalid regexps will be detected, reported and skipped.
-
-* attachment.filename.wc
-
-  As above, except this expects wildcards instead of regular expressions.
-
-* attachment.archive.filename.regex
-
-  This file contains a list of regular expressions, one per line that
-  will be tested against each filename found within an archive file.
-  The first regexp to match will cause the message to be rejected.
-  Any invalid regexps will be detected, reported and skipped.
-
-* attachment.archive.filename.wc
-
-  As above, except this expects wildcards instead of regular expressions.
-
-* attachment.ctype.regex
-
-  This file contains a list of regular expressions, one per line that
-  will be tested against each MIME Content-Type header in the message.
-  The first regexp to match will cause the message to be rejected.
-  Any invalid regexps will be detected, reported and skipped.
-
-* attachiment.ctype.wc
-
-  As above, except this expects wildcards instead of regular expressions.

package/docs/plugins/data.uribl.md

@@ -1,120 +0,0 @@
-data.uribl
-==========
-
-This plugin extracts URIs and feeds them to RHS based blacklists such as 
-[DBL][1] and [SEM-FRESH][2] and body URI based DNS blacklists such as 
-[SURBL][3] and [URIBL][4].
-
-This plugin will discard any domain name that does not have a valid TLD
-or any IP address within RFC1918, 127/8 or 169.254/16 (APIPA) and will
-convert any URI ending in in-addr.arpa into an IP address lookup.
-
-Configuration
--------------
-
-This plugin reads configuration from data.uribl.ini.
-
-The main section defines global settings for all lists and the blacklists
-zones are specified as INI section headings with the configuration for 
-each zone within that section.
-
-The main section can contain the following options:
-
-* timeout
-
-  Default: 30
-
-  The total timeout in seconds for each group of lookups.  Any group of
-  lookups that takes longer than this will be aborted and the session
-  will continue.
-
-* max\_uris\_per\_list                                     
-
-  Default: 20
-
-  This option limits the maximum number of unique lookups that will be 
-  submitted for each list after the input has been normalized into the 
-  query format required for the list.  
-  Any lookups greater than the limit will be discarded.
-
-List sections should be named as the zone of the blacklist and can 
-contain the following options:
-
-At least one of the following must be set for any queries to be run for
-the blacklist.
-
-* rdns = 1 | true | yes | on | enabled
-
-  Check any rDNS names against the list.
-
-* helo = 1 | true | yes | on | enabled
-
-  Check the EHLO/HELO argument against the list.
-
-* envfrom = 1 | true | yes | on | enabled
-
-  Check the MAIL FROM domain against the list.
-
-* from = 1 | true | yes | on | enabled
-
-  Check the domain portion of the From: header against the list.
-
-* replyto = 1 | true | yes | on | enabled
-
-  Check the domain portion of the Reply-To: header against the list.
-
-* msgid = 1 | true | yes | on | enabled
-
-  Check the RHS of the Message-Id: header against the list.
-
-* body = 1 | true | yes | on | enabled
-
-  Check any URIs found within the body of the message against the list.
-
-The following are optional for each list:
-
-* custom\_msg
-
-  A custom rejection message that will be returned to the SMTP client
-  if the list returns a positive result.  If found within the string 
-  {uri} will be replaced by the URI value looked up and {zone} will
-  be replaced by the blacklist zone name.
-
-* validate
-
-  A regular expression that will be tested against the first A record
-  returned by the list.  If it does not evaluate to true then the positive
-  result will be discarded.  Example: ^(?!127\.0\.1\.255)127\. would check
-  that the IP address returned start with 127. and is not 127.0.1.255
-
-* bitmask
-
-  This is optionally used for lists such as [SURBL][3] and [URIBL][4] that
-  return bitmask values in the last octet of the returned IP address to
-  combine multiple lists into a single zone.  Using this you may specify
-  which lists within the zone you want use.
-
-* no\_ip\_lookups = 1 | true | yes | on | enabled
-
-  Specifies that no IP addresses should ever be check against this list.
-  This is required for dbl.spamhaus.org.
-
-* strip\_to\_domain= 1 | true | yes | on | enabled
-
-  Specifies that the list requires hostnames be stripped down to the
-  domain boundaries prior to querying the list.  This is required for
-  the [SURBL][3] and [URIBL][4] lists.
-
-Other files
------------
-
-* data.uribl.excludes 
-
-  This contains a list of domains that should never be looked up in
-  any blacklist as they are known good and will never be listed.
-  This helps to keep useless queries to a minimum.
-
-[1]: http://www.spamhaus.org/dbl
-[2]: http://spameatingmonkey.com/lists.html#SEM-FRESH
-[3]: http://www.surbl.org/
-[4]: http://www.uribl.com/