user name (once authenticated).
Lower the log level of the POP3S "Unable to set session active" messages,
apparently these are normal occurence with drive-by bots and not error.log
worthy.
Fixed the !Cryptlib error in sock_recvbyte log output (sock, not socket).

failure... do that.

not everyone is that inept.

entry - if there's an actual compile error, it should already be logged
via the exception/error-reporter callback. This should eliminate a lot of
the dokuwiki-related error chatter in my error.log.

"Enable to" (TLS-related) error messages. This might help a little to
understand why these errors are happening and allow us to consider
lowering the log level(s) of commonly-occuring cases from LOG_ERR.

support though.

ESMTPS and ESMTPSA coming soon!

newsgroup property.

Note that any exascii is also illegal, but I don't feel like doing the
UTF-8 conversion thing today.  Also, you can manually stick in illegal
characters if you like... but then it's a feature, not a bug.

Should fix possible issue with certificate being owned by root when
_THREAD_SUID_BROKEN is true (ie: Linux).

port number. This resolves the confusion that arises from multiple
identical "closing x Server socket on port n" lines in the log output.

(for subs and "all mail") and 4-digit message numbers. Subs with >9999 msgs
are not unheard of and its easy to accumulate that much mail in the mail base
these days. Just eliminated the ':' from the format line(s) to make room.

These waits could cause "bad" traffic (blocked, max client exceeded, etc)
to prevent/delay accept()ing "good" traffic on other services.

Increase the verbosity of the "Log" checkbox label.

initialized (it's not).

I wasn't expecting to do this, since SFTP is often viewed as "better", but
SFTP doesn't have a specification, the implementations don't follow the
specification drafts that are out there, and the whole sharing a port between
file transfer and terminal server thing is irritating.

This has only been tested with lftp, but it seems to work.

created so graciously by Deuce, or as I like to call him: Mr. Crypto.

mail.sid corruption approximately around midnight (when delmail()) is
called as part of the "DAILY:" mail maintenance, I'm suspicious of this
function and while I haven't found any bugs, I did find (and now fixed)
lack of error checking in calls to smb_fsetlength() and smb_fwrite().

status.total_msgs value: if they don't match, don't add header & index
to the message base, it's apparently corrupted and we're only going to
make things worse as smb_putmsgidx() will fail (after we've stored the hdr)
with an "invalid index offset" error.

If caller doesn't zero-initialize smb_t, then the 'lock' member could've
been non-zero (garbage) and some functions would then not lock the SMB
header, used for protecting against corruption from multiple process or thread
modification of the same base.

for new TLS-related settings:
SubmissionsPort -> TLSSubmissionPort
POP3SPort -> TLSPOP3Port
USE_TLS_SUBMISSIONS_PORT -> TLS_SUBMISSION
USE_POP3S_PORT -> TLS_POP3
There was actuall a typo in the "USE_POP3S_PORT" string anyway. <shrug>

so that the smb_unlock() in main() doesn't fail and display the harmless
error:
Error -207 (smb_unlock 2 'No such file or directory' removing mail.lock)
unlocking mail

section:

POP3SPort=995
SubmissionsPort=465

And two new mail options:
USE_SUBMISSIONS_PORT
USE_POP3SS_PORT

These are the last of the two option bits for the mail server.

Support STARTTLS in SMTP and STLS in POP3.  This includes the sendmail
thread.  Clients can now be configured to use STARTTLS with Synchronet
mail services, and Synchronet will attempt to deliver securely when
possible (though it will fall back to plain text delivery when necessary.)

This touches a *lot* of mail server stuff, so some instability is not
unlikely.

Of course, RFC8314 (Jan, 2018) officially recommends implicit TLS on the TLS
ports now, so support for that should be next.