Subversion Repositories

?revision_form?Rev ?revision_input??revision_submit??revision_endform?

Rev 2 | Details | Compare with Previous | Last modification | View Log | RSS feed

Rev Author Line No. Line
2 magnus 1
#! /bin/sh /usr/share/dpatch/dpatch-run
2
## 25_maxvals.dpatch by Thomas Jacob <jacob@internet24.de>
3
##
4
## All lines beginning with `## DP:' are a description of the patch.
5
## DP: Bring certain processing limits (meant to mitigate DoS attacks) in line
6
## DP: with RFC 4408.
7
 
8
@DPATCH@
9
 
10
diff -ruN libspf2-1.2.5/src/include/spf.h libspf2-1.2.5.patched/src/include/spf.h
11
--- libspf2-1.2.5/src/include/spf.h	2005-02-17 01:56:55.000000000 +0100
12
+++ libspf2-1.2.5.patched/src/include/spf.h	2007-03-14 16:58:21.000000000 +0100
13
@@ -52,8 +52,8 @@
14
 
15
 /* FYI only -- defaults can't be changed without recompiling the library */
16
 #define SPF_DEFAULT_MAX_DNS_MECH 10	/* DoS limit on SPF mechanisms	*/
17
-#define SPF_DEFAULT_MAX_DNS_PTR	  5	/* DoS limit on PTR records	*/
18
-#define SPF_DEFAULT_MAX_DNS_MX	  5	/* DoS limit on MX records	*/
19
+#define SPF_DEFAULT_MAX_DNS_PTR	 10	/* DoS limit on PTR records	*/
20
+#define SPF_DEFAULT_MAX_DNS_MX	 10	/* DoS limit on MX records	*/
21
 #define SPF_DEFAULT_SANITIZE	  1
22
 #define SPF_DEFAULT_WHITELIST	  "include:spf.trusted-forwarder.org"
23
 #define SPF_EXP_MOD_NAME	"exp-text"
24
diff -ruN libspf2-1.2.5/src/include/spf_internal.h libspf2-1.2.5.patched/src/include/spf_internal.h
25
--- libspf2-1.2.5/src/include/spf_internal.h	2005-02-24 05:10:49.000000000 +0100
26
+++ libspf2-1.2.5.patched/src/include/spf_internal.h	2007-03-14 16:58:04.000000000 +0100
27
@@ -57,13 +57,13 @@
28
 /* It is a bad idea to change this for the same reasons as mentioned
29
  * above for SPF_MAX_DNS_MECH
30
  */
31
-#define SPF_MAX_DNS_PTR   5
32
+#define SPF_MAX_DNS_PTR   10
33
 #endif
34
 #ifndef SPF_MAX_DNS_MX
35
 /* It is a bad idea to change this for the same reasons as mentioned
36
  * above for SPF_MAX_DNS_MECH
37
  */
38
-#define SPF_MAX_DNS_MX    5
39
+#define SPF_MAX_DNS_MX    10
40
 #endif
41
 
42
 #if 1
43
diff -ruN libspf2-1.2.5/src/include/spf_server.h libspf2-1.2.5.patched/src/include/spf_server.h
44
--- libspf2-1.2.5/src/include/spf_server.h	2004-09-29 12:33:09.000000000 +0200
45
+++ libspf2-1.2.5.patched/src/include/spf_server.h	2007-03-14 16:58:54.000000000 +0100
46
@@ -44,13 +44,13 @@
47
 /* It is a bad idea to change this for the same reasons as mentioned
48
  * above for SPF_MAX_DNS_MECH
49
  */
50
-#define SPF_MAX_DNS_PTR   5
51
+#define SPF_MAX_DNS_PTR   10
52
 #endif
53
 #ifndef SPF_MAX_DNS_MX
54
 /* It is a bad idea to change this for the same reasons as mentioned
55
  * above for SPF_MAX_DNS_MECH
56
  */
57
-#define SPF_MAX_DNS_MX    5
58
+#define SPF_MAX_DNS_MX    10
59
 #endif
60
 
61
 struct SPF_server_struct {