amavisd-new

A true SNMP agent and an MIB now allow monitoring amavisd process
health and collecting mail traffic statistics by SNMP clients such as
MRTG or Cacti. A SMTP-status response text for blocked mail is now
customizable. DKIM signatures now protect important mail header fields
from duplication. Parsing of a combined result from DSPAM has been
fixed. A startup failure has been fixed when spam scanning has been
disabled. Propagation has been corrected for an "Exceeded storage quota"
exception from several decoders. A bug has been fixed in a milter setup,
where a "1" was inserted in a header field instead of a correct string.

Loading of a policy bank based on a client's IP address is now implemented. Spam checking of long messages is now possible by passing a truncated message to a scanner. DKIM and DK signatures are passed intact to SpamAssassin 3.3 even when a message is truncated. Support for spam scanners other than Mail::SpamAssassin is now available by using a @spam_scanners list. CRM114 is now supported, either as a SpamAssassin plugin, or by directly calling it instead of or in addition to SpamAssassin. External spawned programs can now be used as spam scanners, currently supported are CRM114 and DSPAM.

Detection of nonstandard bounces was improved, allowing this release to kill more third-party backscatter without sacrificing reliable acceptance of genuine DSN and MDN. The backscatter processing rate was greatly improved by avoiding SA processing of killed bounces. A DKIM documentation section was rewritten to prompt more wide-spread use of DKIM signing by amavisd. A bug was fixed that could let the SMTP protocol get out-of-step when SMTP connection cache is enabled. Compatibility with SpamAssassin 3.3 (CVS head) was regained, and compatibility with Perl 5.10.0 was tested and confirmed.

Default SQL clauses now join tables using both the
partition_tag and the mail_id fields, meeting
needs for MySQL database partitioning. A data type
mismatch between SQL tables was fixed in
README.sql-mysql. Bounce-killer's false positives
are now avoided in multipart/mixed messages with
an attached mail message. Privileges were dropped
too early when chrooting, causing chroot to fail.
Access to uninitialized data in amavis-milter was
fixed. An new placeholder allows organizing a
quarantine by week number. A do_ascii decoder was
disabled in the default list. The use of
my_require was reverted.

DKIM signing and verification is now natively
supported. Policy banks based on DKIM-validated
author address offer whitelisting and bypassing of
banning checks. Backscatter bounces can be killed
based on pen pals lookups. The SQL database was
made partitionable. SA logging is merged with
native logging, along with a SA 3.3 timing report.
Messages from a quarantine can be released as
attachments. Basic support for abuse reporting was
added. TLS is supported. Amavisd-nanny and
amavisd-agent re-open a database on amavisd
restarts. p0f-analyzer.pl was updated to support
source port number in queries.