From nobody@FreeBSD.org  Thu Dec  6 14:03:01 2012
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id C4118483
	for <freebsd-gnats-submit@FreeBSD.org>; Thu,  6 Dec 2012 14:03:01 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22])
	by mx1.freebsd.org (Postfix) with ESMTP id A8DA88FC08
	for <freebsd-gnats-submit@FreeBSD.org>; Thu,  6 Dec 2012 14:03:01 +0000 (UTC)
Received: from red.freebsd.org (localhost [127.0.0.1])
	by red.freebsd.org (8.14.5/8.14.5) with ESMTP id qB6E31gU080546
	for <freebsd-gnats-submit@FreeBSD.org>; Thu, 6 Dec 2012 14:03:01 GMT
	(envelope-from nobody@red.freebsd.org)
Received: (from nobody@localhost)
	by red.freebsd.org (8.14.5/8.14.5/Submit) id qB6E31jl080545;
	Thu, 6 Dec 2012 14:03:01 GMT
	(envelope-from nobody)
Message-Id: <201212061403.qB6E31jl080545@red.freebsd.org>
Date: Thu, 6 Dec 2012 14:03:01 GMT
From: Gerard Seibert <gerard@seibercom.net>
To: freebsd-gnats-submit@FreeBSD.org
Subject: Error message after updating some Perl modules with net/sendemail
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         174232
>Category:       ports
>Synopsis:       Error message after updating some Perl modules with net/sendemail
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    itetcu
>State:          suspended
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Dec 06 14:10:00 UTC 2012
>Closed-Date:    
>Last-Modified:  Thu Oct 24 11:20:00 UTC 2013
>Originator:     Gerard Seibert
>Release:        FreeBSD 8.3-STABLE
>Organization:
Seibercom.net
>Environment:
FreeBSD scorpio.seibercom.net 8.3-STABLE FreeBSD 8.3-STABLE #0: Fri Aug 17 13:52:14 EDT 2012     gerard@scorpio.seibercom.net:/usr/obj/usr/src/sys/SCORPIO  amd64
>Description:
This problem has been reported to the port maintainer.

I have had "net/sendemail" installed on my systems for years and have
usually never had a problem with it. Suddenly, one had appeared. I just
updated some modules on my FreeBSD-8.3 STABLE system when this occurred.
I might add that I am using "sendEmail" with SSL.

I have the following modules installed:

security/p5-IO-Socket-SSL  -- version 1.80
security/p5-Net-SSLeay     -- version 1.49
security/p5-Crypt-SSLeay   -- Version 0.64

Error Message: <quote>

 Using the default of SSL_verify_mode of SSL_VERIFY_NONE for client
 is depreciated! Please set SSL_verify_mode to SSL_VERIFY_PEER
 together with SSL_ca_file|SSL_ca_path for verification.
 If you really don't want to verify the certificate and keep the
 connection open to Man-In-The-Middle attacks please set
 SSL_verify_mode explicitly to SSL_VERIFY_NONE in your application.
*******************************************************************
  at /usr/local/bin/sendEmail line 1906.

</quote>

The mail is sent however, so apparently this is a frivolous message.
>How-To-Repeat:
Install "perl5/5.16.2" with the latest updated modules and then install "net/sendemail" with the "SSL" option checked. Then when using the program, use the SSL option.
>Fix:


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->freebsd-ports-bugs 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Sun Dec 9 17:30:28 UTC 2012 
Responsible-Changed-Why:  
ports PR. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=174232 
Responsible-Changed-From-To: freebsd-ports-bugs->itetcu 
Responsible-Changed-By: edwin 
Responsible-Changed-When: Sun Dec 9 17:30:46 UTC 2012 
Responsible-Changed-Why:  
Over to maintainer (via the GNATS Auto Assign Tool) 

http://www.freebsd.org/cgi/query-pr.cgi?pr=174232 
State-Changed-From-To: open->feedback 
State-Changed-By: itetcu 
State-Changed-When: Mon Dec 10 21:44:04 UTC 2012 
State-Changed-Why:  
Yes, the email is sent. Does your SMTP server use a self-signed 
certificate? 

http://www.freebsd.org/cgi/query-pr.cgi?pr=174232 

From: Gerard Seibert <gerard@seibercom.net>
To: bug-followup@FreeBSD.org, gerard@seibercom.net
Cc:  
Subject: Re: ports/174232: Error message after updating some Perl modules
 with net/sendemail
Date: Tue, 11 Dec 2012 06:40:35 -0500

 Yes, I am using Postfix with a self-signed certificate.

From: Ion-Mihai Tetcu <itetcu@FreeBSD.org>
To: Gerard Seibert <gerard@seibercom.net>, bug-followup@FreeBSD.org,
 caspian@dotconf.net
Cc:  
Subject: Re: ports/174232: Error message after updating some Perl modules
 with net/sendemail
Date: Wed, 12 Dec 2012 20:28:08 +0200

 >
 >  Yes, I am using Postfix with a self-signed certificate.
 > 
 In which case the certificate is not "fully valid" and you get a
 warning, which seems the right thing to me.
 I'm reluctant to patch this locally (the easy way) by setting
 SSL_verify_mode => 0  since this would, by default, hide a potential
 man-in-the-middle attack. I guess this should be a command-line option
 (upsteam CC'ed).
 
 The other thing you mention I patched in the port some time ago a bit
 differently (at the time I fw'ed the commit log to the author):
 
 r298402 | itetcu | 2012-06-05 01:48:35 +0300 (Tue, 05 Jun 2012) | 14 lines
 
 Fix run-time breackage:
 - recent versions of p5-IO-Socket-SSL defaut to SSLv2, SSLv3 and TLSv1 support
 for initial protocol handshakes, with SSLv2 not be accepted, actually leaving
 only SSLv3 and TLSv1. So there's no need to set the SSL version explicitly when
 calling IO::Socket::SSL->start_SSL() anymore (and actually this way we're a bit
 more compatible with various server outhere).
 - bump PORTREVISION
 
  > m files/patch-sendEmail
 --- ./sendEmail.orig    2012-06-05 01:35:29.000000000 +0300
 +++ ./sendEmail 2012-06-05 01:36:44.000000000 +0300
 @@ -1903,7 +1903,7 @@
      if ($conf{'tls_server'} == 1 and $conf{'tls_client'} == 1 and $opt{'tls'} =~ /^(yes|auto)$/) {
          printmsg("DEBUG => Starting TLS", 2);
          if (SMTPchat('STARTTLS')) { quit($conf{'error'}, 1); }
 -        if (! IO::Socket::SSL->start_SSL($SERVER, SSL_version => 'SSLv3 TLSv1')) {
 +        if (! IO::Socket::SSL->start_SSL($SERVER)) {
              quit("ERROR => TLS setup failed: " . IO::Socket::SSL::errstr(), 1);
          }
          printmsg("DEBUG => TLS: Using cipher: ". $SERVER->get_cipher(), 3);
 
 So I'll put the PR in a 'suspend' state waiting from comments from
 Caspian after he's back from vacation.
 
 -- 
 IOnut - Un^d^dregistered ;) FreeBSD "user"
   "Intellectual Property" is   nowhere near as valuable   as "Intellect"
 FreeBSD committer -> itetcu@FreeBSD.org, PGP Key ID F0808380
State-Changed-From-To: feedback->suspended 
State-Changed-By: itetcu 
State-Changed-When: Wed Dec 12 18:34:56 UTC 2012 
State-Changed-Why:  
Suspend the PR waiting for feedback from upstream. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=174232 

From: Gerard Seibert <gerard@seibercom.net>
To: bug-followup@FreeBSD.org, gerard@seibercom.net
Cc:  
Subject: Re: ports/174232: Error message after updating some Perl modules
 with net/sendemail
Date: Thu, 24 Oct 2013 07:11:23 -0400

 I know that this was suspended in Dec 2012, nearly a year ago. I was
 wondering if the problem was ever corrected and if so, why the PR was
 not closed? .
>Unformatted:
