Tom qab ib xyoos ntawm kev txhim kho, ib ceg ruaj khov tshiab ntawm Postfix mail server raug tso tawm - 3.6.0. Tib lub sijhawm, nws tshaj tawm qhov kawg ntawm kev txhawb nqa rau Postfix 3.2 ceg, tso tawm thaum ntxov 2017. Postfix ββyog ib qho ntawm cov haujlwm tsis tshua muaj kev sib koom ua ke ntawm kev ruaj ntseg, kev ntseeg siab thiab kev ua tau zoo tib lub sijhawm, uas tau ua tiav ua tsaug rau kev xav txog kev tsim vaj tsev zoo thiab txoj cai nruj nruj rau kev tsim qauv thiab thaj chaw kuaj xyuas. Txoj haujlwm code yog muab faib raws li EPL 2.0 (Eclipse Public License) thiab IPL 1.0 (IBM Public License).
Raws li kev tshawb fawb lub Plaub Hlis automated txog li 600 txhiab mail servers, Postfix siv 33.66% (ib xyoo dhau los 34.29%) ntawm cov xa ntawv xa ntawv, feem ntawm Exim yog 59.14% (57.77%), Sendmail - 3.6% (3.83 %), MailEnable - 2.02% (2.12%), MDaemon - 0.60% (0.77%), Microsoft Exchange - 0.32% (0.47%).
Main innovations:
- Vim muaj kev hloov pauv hauv cov txheej txheem sab hauv siv rau kev sib cuam tshuam ntawm Postfix Cheebtsam, txwv tsis pub xa ntawv xa nrog cov lus txib "postfix nres" yuav tsum tau ua ua ntej hloov kho. Txwv tsis pub, tej zaum yuav muaj kev ua tsis tiav thaum cuam tshuam nrog kev khaws, qmgr, txheeb xyuas, tlsproxy, thiab cov txheej txheem postscreen, uas tuaj yeem ua rau ncua sij hawm xa email kom txog thaum Postfix rov pib dua.
- Kev hais txog cov lus "dawb" thiab "dub," pom los ntawm qee cov tswv cuab hauv zej zog raws li kev ntxub ntxaug lwm haiv neeg, tau raug tshem tawm. Hloov chaw "whitelist" thiab "blacklist", "allowlist" thiab "denylist" yuav tsum tau siv tam sim no (piv txwv li, qhov tsis muaj postscreen_allowlist_interfaces, postscreen_denylist_action thiab postscreen_dnsbl_allowlist_threshold). Cov kev hloov pauv cuam tshuam rau cov ntaub ntawv, kev teeb tsa ntawm cov txheej txheem postscreen (built-in firewall) thiab xav txog cov ntaub ntawv hauv cov cav. postfix/postscreen[pid]: ALLOWLIST VETO [address]:port postfix/postscreen[pid]: ALLOWLISTED [chaw nyob]:port postfix/postscreen[pid]: DENYLISTED [address]:port
Txhawm rau khaws cov ntsiab lus yav dhau los hauv cov cav, "kev hwm_logging = tsis muaj" parameter yog muab, uas yuav tsum tau teev nyob rau hauv main.cf ua ntej "compatibility_level = 3.6". Kev them nyiaj yug rau cov npe tom qab lub npe qub tau khaws cia rau kev rov qab sib raug zoo. Tsis tas li ntawd, cov ntaub ntawv teeb tsa "master.cf" tseem tsis tau hloov pauv tam sim no.
- Hauv "compatibility_level = 3.6" hom, lub neej ntawd hloov pauv tau ua los siv SHA256 hash ua haujlwm hloov MD5. Yog tias koj teeb tsa tus qauv ua ntej hauv qhov sib piv_level parameter, MD5 txuas ntxiv siv, tab sis rau kev teeb tsa cuam tshuam nrog kev siv cov hashes uas lub algorithm tsis tau hais meej meej, ceeb toom yuav tshwm sim hauv lub cav. Kev them nyiaj yug rau cov khoom xa tawm ntawm Diffie-Hellman tus txheej txheem pauv pauv tseem ceeb tau raug txiav tawm (tus nqi ntawm tlsproxy_tls_dh512_param_file parameter tam sim no tsis quav ntsej).
- Kev kuaj pom yooj yim ntawm cov teeb meem cuam tshuam nrog kev qhia qhov tsis raug qhov kev pab cuam hauv master.cf. Txhawm rau txheeb xyuas qhov tsis raug, txhua qhov kev pabcuam backend, suav nrog postdrop, tam sim no tshaj tawm lub npe raws tu qauv ua ntej pib kev sib txuas lus, thiab txhua tus neeg siv cov txheej txheem, suav nrog kev xa email, xyuas tias cov npe tshaj tawm raws tu qauv sib haum rau cov kev txhawb nqa.
- Ntxiv ib daim ntawv qhia tshiab "local_login_sender_maps" rau kev tswj tau yooj yim ntawm kev ua haujlwm ntawm tus neeg xa ntawv lub hnab ntawv chaw nyob (muab hauv "MAIL FROM" hais kom ua thaum lub sijhawm SMTP kev sib ntsib) rau cov txheej txheem xa ntawv thiab xa tawm. Piv txwv li, txhawm rau tso cai rau cov neeg siv hauv zos, tshwj tsis yog hauv paus thiab postfix, txhawm rau txheeb xyuas lawv cov kev nkag mus hauv sendmail, siv UID khi rau lub npe, koj tuaj yeem siv cov chaw hauv qab no: /etc/postfix/main.cf: local_login_sender_maps = inline :{ { hauv paus = * } , { postfix = * } }, pcre:/etc/postfix/login_senders /etc/postfix/login_senders: # Qhia tawm ob qho tib si logins thiab tus ID nkag mus@domain daim ntawv tso cai. /.+)/ $1 $1β¦@example.com
- Ntxiv thiab qhib los ntawm lub neej ntawd "smtpd_relay_before_recipient_restrictions = yog" chaw, nyob rau hauv uas SMTP neeg rau zaub mov yuav xyuas smtpd_relay_restrictions ua ntej smtpd_recipient_restrictions, thiab tsis vice versa, zoo li ua ntej.
- Ntxiv parameter "smtpd_sasl_mechanism_list", uas ua rau "!sab nraud, zoo li qub: so" los tiv thaiv kev tsis meej pem hauv rooj plaub uas SASL backend thov los txhawb hom "EXTERNAL", uas tsis txaus siab hauv Postfix.
- Thaum daws cov npe hauv DNS, API tshiab uas txhawb nqa multithreading (threadsafe) tau qhib los ntawm lub neej ntawd. Txhawm rau tsim nrog API qub, koj yuav tsum qhia "ua cov ntaub ntawv CCARGS ="-DNO_RES_NCALLS..." thaum tsim.
- Ntxiv "enable_threaded_bounces = yog" hom los hloov cov ntawv ceeb toom txog cov teeb meem kev xa khoom, kev xa khoom qeeb lossis kev lees paub kev xa khoom nrog tib tus ID sib tham (cov ntawv ceeb toom yuav raug qhia los ntawm tus neeg xa ntawv hauv tib lub xov, nrog rau lwm cov ntawv xov xwm).
- Los ntawm lub neej ntawd, /etc/services system database tsis siv los txiav txim TCP tus lej chaw nres nkoj rau SMTP thiab LMTP. Hloov chaw, tus lej chaw nres nkoj tau teeb tsa los ntawm qhov paub_tcp_ports parameter (default lmtp=24, smtp=25, smtps=submissions=465, xa = 587). Yog tias qee qhov kev pabcuam ploj lawm los ntawm know_tcp_ports, /etc/services tseem siv.
- Qib compatibility ("compatibility_level") tau nce mus rau "3.6" (qhov ntsuas tau hloov ob zaug yav dhau los, tshwj tsis yog rau 3.6 qhov kev txhawb nqa yog 0 (default), 1 thiab 2). Txij no mus, "compatibility_level" yuav hloov mus rau tus lej version uas tau hloov pauv uas ua txhaum kev sib raug zoo. Txhawm rau txheeb xyuas qib sib piv, cais cov neeg ua haujlwm sib piv tau ntxiv rau main.cf thiab master.cf, xws li "<=level" thiab "<level" (tus qauv kev sib piv tsis haum, vim lawv yuav xav txog 3.10 tsawg dua 3.9).
Tau qhov twg los: opennet.ru