ProHoster > Blog > labaran intanet > Ana samun sabar saƙo na Postfix 3.8.0

Ana samun sabar saƙo na Postfix 3.8.0

Bayan watanni 14 na ci gaba, an fito da sabon reshe mai tsayayye na sabar saƙon Postfix - 3.8.0 -. A lokaci guda, ta sanar da ƙarshen tallafi ga reshen Postfix 3.4, wanda aka saki a farkon 2019. Postfix shine ɗayan ayyukan da ba kasafai ba wanda ya haɗu da babban tsaro, amintacce da aiki a lokaci guda, wanda aka samu godiya ga kyakkyawan tsarin gine-gine da ingantaccen tsari don ƙirar ƙira da faci. An rarraba lambar aikin a ƙarƙashin EPL 2.0 (Lasisi na Jama'a) da IPL 1.0 (Lasisin Jama'a IBM).

A cewar wani bincike ta atomatik na watan Janairu na kusan saƙonnin gidan waya 400 sabobin, Ana amfani da Postfix akan 33.18% (34.08% a shekara da ta gabata) na sabar wasiku, rabon Exim shine 60.27% (58.95%), Sendmail - 3.62% (3.58%), MailEnable - 1.86% (1.99%), MDaemon - 0.39% (0.52%), Microsoft Exchange - 0.19% (0.26%), OpenSMTPD - 0.06% (0.06%).

Manyan sabbin abubuwa:

  • Abokin ciniki na SMTP/LMTP yanzu yana da ikon duba bayanan SRV na DNS don tantance mai masaukin baki da tashar jiragen ruwa na sabar imel. uwar garke, wanda za a yi amfani da shi don aika saƙonni. Misali, idan ka ƙayyade "use_srv_lookup = submission" da "relayhost = example.com:submission" a cikin saitunan, abokin ciniki na SMTP zai buƙaci rikodin SRV na mai masaukin _submission._tcp.example.com don tantance mai masaukin da tashar ƙofar wasiƙa. Ana iya amfani da wannan fasalin a cikin kayayyakin more rayuwa waɗanda ke amfani da ayyuka tare da lambobin tashar hanyar sadarwa da aka ware don isar da imel.
  • SEED, IDEA, 3DES, RC2, RC4, da RC5 ciphers, MD5 hash, da DH da ECDH maɓalli na musanya algorithms an cire su daga jerin tsoffin algorithms na TLS da aka yi amfani da su a cikin saituna, saboda an daina amfani da su ko kuma ba a yi amfani da su ba. Ƙayyadaddun nau'ikan sifofi na "fitarwa" da "ƙananan" a cikin saitunan yanzu suna saita nau'in "matsakaici" yadda ya kamata, saboda an daina tallafawa nau'ikan "fitarwa" da "ƙananan" a cikin OpenSSL 1.1.1.
  • An ƙara sabon saiti "tls_ffdhe_auto_groups" don ba da damar yarjejeniyar shawarwarin ƙungiyar FFDHE (Finite-Field Diffie-Hellman Ephemeral) a cikin TLS 1.3 lokacin gini tare da OpenSSL 3.0.
  • Don kare kai daga hare-haren da ke da nufin gajiyar ƙwaƙwalwar ajiyar da ke akwai, ƙididdiga "smtpd_client_*_rate" da "smtpd_client_*_count" an tattara su a cikin mahallin tubalan cibiyar sadarwa, girman wanda umarnin "smtpd_client_ipv4_prefix_length" da "smtpd_client_ipv6_prefix_length" aka ƙayyade. (Ta hanyar tsoho / 32 da / 84)
  • Ƙara kariya daga hare-haren da ke amfani da buƙatar sake shawarwarin haɗin TLS a cikin haɗin SMTP da aka riga aka kafa don ƙirƙirar nauyin CPU mai yawa.
  • Umurnin postconf yanzu yana buga gargaɗi don maganganun da aka ƙayyade kai tsaye suna bin ƙimar ma'auni a cikin fayil ɗin sanyi na Postfix.
  • An gabatar da ikon daidaita rikodin rikodin abokin ciniki don PostgreSQL ta hanyar tantance sifa "encoding" a cikin fayil ɗin daidaitawa (an saita ƙimar tsoho zuwa "UTF8", yayin da a baya aka yi amfani da ɓoyayyen "LATIN1").
  • Umurnin postfix da postlog yanzu suna fitar da rajistan ayyukan zuwa stderr ba tare da la’akari da ko rafin stderr yana da alaƙa da tashar ba.
  • A cikin bishiyar tushen, an matsar da fayilolin "global/mkmap*.[hc]" zuwa kundin adireshin "util", yana barin fayilolin "global/mkmap_proxy.*" kawai a cikin babban kundin adireshi.

source: budenet.ru

Sayi amintaccen masauki don shafuka tare da kariyar DDoS, sabar VPS VDS 🔥 Sayi ingantaccen masaukin yanar gizo tare da kariyar DDoS, sabar VPS VDS | ProHoster