baserev update by copy to link target

• Files Changed
• Browse Source

Prepare for RPM 4.20

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Add Provides for user/group needed by rpm 4.19

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Add fix-RSA_sign-call.patch
  * Fix bsc#1216117
  * Fix call of RSA sign on big endian systems, patch origin:
    https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1012506

• Files Changed
• Browse Source

- Added hardening to systemd service (bsc#1181400). Added patch:
  * harden_opendkim.service.patch
  Modified:
  * opendkim.service

• Files Changed
• Browse Source

Fix

• Files Changed
• Browse Source

• Files Changed
• Browse Source

apply some fixes

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- Fix usage of %{_libexecdir} when %{_tmpfilesdir} was meant to be
  used.

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- opendkim calls openssl, make sure the command is there

- Use systemd_ordering instead of systemd_requires for container
- Update to opendkim 2.11.0-Beta2
  - Add support for ED25519 keys
  - Add compatibility with openssl-1.1.0
  - Feature request #190: Reject signature object requests
    where the domain name or selector includes non-printable
    characters.
  - Feature requrest #187: Add option to match subdomains when
    generating zone files.
  - Many bug fixes
  - Obsoletes opendkim.ticket35+37.patch
- Disable erlang, new erlang version seems to miss required files

• Files Changed
• Browse Source

minor reformatting to get a different worker

• Files Changed
• Browse Source

baserev update by copy to link target

• Files Changed
• Browse Source

- https://src.fedoraproject.org/rpms/opendkim/raw/master/f/opendkim.ticket35+37.patch
  allow building on newer distros (openssl 1.1 support)

• Files Changed
• Browse Source

- fix the previous change:
  source files got added but the renumbering was not applied to the
  reference to the source files -> signature file was installed as
  services file

• Files Changed
• Browse Source

- Applied spec-cleaner to spec file
- Removed conditionals around %license macro
- Used OpenPGP signature provided upstream
- Added opendkim.keyring containing the key used to sign official
  releases.

• Files Changed
• Browse Source

Change file:
- enable DNSSEC support (requires unbound library)
  ATTENTION: The file /var/lib/unbound/root.key must be readable by
  user opendkim, which is not the fact for older unbound packages

Notes:
- Tested and works fine.

I submitted another patch to unbound (was accepted), which makes the anchor file readable. For versions before this patch the default I added will not be readable and thus the OpenDKIM start will fail. I don't know a good workaround for this. One solution would be to comment the Anchor parameter. In this case DNSSEC would run unvalidated. Actually I think failing to start is the better option as users notice that a configuration is missing.

• Files Changed
• Browse Source