ProHoster > Блог > ozi ịntanetị > Mwepụta nke ihe nkesa ozi Postfix 3.6.0

Mwepụta nke ihe nkesa ozi Postfix 3.6.0

Mgbe otu afọ nke mmepe gachara, ewepụtara alaka ọhụrụ kwụsiri ike nke ihe nkesa ozi Postfix - 3.6.0. N'otu oge ahụ, ọ mara ọkwa njedebe nkwado maka ngalaba Postfix 3.2, ewepụtara na mbido 2017. Postfix bụ otu n'ime ọrụ ndị na-adịghị ahụkebe na-ejikọta nchekwa dị elu, ntụkwasị obi na arụmọrụ n'otu oge, nke enwetara ekele maka ụkpụrụ ụlọ echepụtara nke ọma na amụma siri ike maka imepụta koodu na nyocha patch. A na-ekesa koodu oru ngo n'okpuru EPL 2.0 (Eclipse Public License) na IPL 1.0 (IBM Public License).

Dị ka nnyocha e mere April akpaghị aka nke ihe dị ka 600 puku sava ozi, a na-eji Postfix na 33.66% (otu afọ gara aga 34.29%) nke sava ozi, òkè nke Exim bụ 59.14% (57.77%), Sendmail - 3.6% (3.83). %), MailEnable - 2.02% (2.12%), MDaemon - 0.60% (0.77%), Microsoft Exchange - 0.32% (0.47%).

Isi ihe ọhụrụ:

  • N'ihi mgbanwe na usoro n'ime protocol eji maka mmekọrịta n'etiti Postfix components, a chọrọ ịkwụsị ihe nkesa ozi na iwu "postfix stop" tupu emelite. Ma ọ bụghị ya, enwere ike inwe ọdịda mgbe ị na-emekọrịta ihe na pickup, qmgr, nyochaa, tlsproxy, na usoro ihuenyo postscreen, nke nwere ike ịkpata igbu oge na izipu ozi-e ruo mgbe Postfix ga-amaliteghachi.
  • E kpochapụrụ aha okwu ndị a bụ “ọcha” na “oji,” nke ụfọdụ ndị obodo chere na ọ bụ ịkpa ókè agbụrụ. Kama "ọcha" na "list ojii", "allowlist" na "denylist" kwesịrị iji ugbu a (dịka ọmụmaatụ, parampat postscreen_allowlist_interfaces, postscreen_denylist_action na postscreen_dnsbl_allowlist_threshold). Mgbanwe ndị a na-emetụta akwụkwọ, ntọala nke usoro ihuenyo postscreen (nke arụnyere n'ime ọkụ) na ntụgharị ozi na ndekọ. postfix/postscreen[pid]: ALLOWLIST VETO [adreesị]: ọdụ ụgbọ mmiri postfix/postscreen[pid]: EKWEERE [adreesị]: ọdụ ụgbọ mmiri postfix/ihuenyo[pid]: anabataghị [adreesị]: ọdụ ụgbọ mmiri

    Iji chekwaa okwu ndị gara aga na ndekọ, a na-enye paramita "respectful_logging = mba", nke ekwesịrị ịkọwapụta na main.cf tupu "compatibility_level = 3.6". Nkwado maka aha ntọala ihuenyo post ochie ka edobere maka ndakọrịta azụ. Ọzọkwa, faịlụ nhazi "master.cf" agbanwebeghị ugbu a.

  • Na ọnọdụ “ndakọrịta_level = 3.6”, agbanwere ndabara ka ọ jiri ọrụ hash SHA256 kama MD5. Ọ bụrụ na ịtọọ ụdị mbụ na paramita compatibility_level, MD5 na-aga n'ihu na-eji ya, mana maka ntọala metụtara ojiji hashes nke akọwapụtaghị algọridim n'ụzọ doro anya, a ga-egosipụta ịdọ aka ná ntị na ndekọ. Akwụsịla nkwado maka ụdị mbupụ nke usoro mgbanwe igodo Diffie-Hellman (uru nke tlsproxy_tls_dh512_param_file parameter na-eleghara uru ugbu a).
  • Nchọpụta dị mfe nke nsogbu jikọtara na ịkọwapụta mmemme njikwa na-ezighi ezi na master.cf. Iji chọpụta njehie ndị dị otú ahụ, ọrụ azụ azụ ọ bụla, gụnyere postdrop, na-akpọsa aha protocol ugbu a tupu ịmalite nzikọrịta ozi, yana usoro onye ahịa ọ bụla, gụnyere izipu ozi, na-enyocha na aha protocol agbasapụtara dabara na ụdị akwadoro.
  • Agbakwunyere ụdị maapụ ọhụrụ "local_login_sender_maps" maka njikwa mgbanwe maka ọrụ nke adreesị envelopu onye zitere (nke e nyere na iwu "MAIL FROM" n'oge nnọkọ SMTP) na usoro izipu na postdrop. Dịka ọmụmaatụ, iji kwe ka ndị ọrụ mpaghara, ewezuga mgbọrọgwụ na postfix, ezipụta naanị nbanye ha na sendmail, site na iji UID na-ejikọta aha ahụ, ịnwere ike iji ntọala ndị a: /etc/postfix/main.cf: local_login_sender_maps = inline : { {mgbọrọgwụ = *} , {postfix = *}}, pcre:/etc/postfix/login_senders /etc/postfix/login_senders: # A na-anabata ma nbanye na login@domain form. /(.+)/ $1 $1…@example.com
  • Gbakwunye ma mee ya site na ndabara ntọala “smtpd_relay_before_recipient_restrictions=ee”, nke ihe nkesa SMTP ga-elele smtpd_relay_restrictions tupu smtpd_relay_restrictions, ọ bụghị nke ọzọ, dị ka ọ dị na mbụ.
  • agbakwunyere paramita "smtpd_sasl_mechanism_list", nke na-adaba na "!external, static: rest" iji gbochie mmejọ mgbagwoju anya na ikpe ebe SASL backend na-ekwu na ọ kwadoro ọnọdụ "EXTERNAL", nke anaghị akwado na Postfix.
  • Mgbe ị na-edozi aha na DNS, API ọhụrụ na-akwado multithreading (threadsafe) na ndabara. Iji jiri API ochie wuo, ị ga-ezipụta “mere makefiles CCARGS=”-DNO_RES_NCALLS…” mgbe ị na-ewu.
  • Agbakwunyere "enable_threaded_bounces = ee" iji dochie ọkwa ọkwa gbasara nsogbu nnyefe, nnyefe egbu oge ma ọ bụ nkwenye nnyefe site na otu NJ mkparịta ụka (onye ahịa mail ga-egosi ọkwa ahụ n'otu eri ahụ, yana ozi ozi ndị ọzọ).
  • Site na ndabara, anaghịzi eji nchekwa data /etc/services iji chọpụta ọnụọgụ ọdụ ụgbọ mmiri TCP maka SMTP na LMTP. Kama nke ahụ, a na-ahazi nọmba ọdụ ụgbọ mmiri site na ama ama_tcp_ports paramita (ndabara lmtp = 24, smtp = 25, smtps = ntinye = 465, nrubeisi = 587). Ọ bụrụ na ụfọdụ ọrụ na-efu na known_tcp_ports, /etc/services na-aga n'ihu na-eji.
  • Ebulila ọkwa ndakọrịta ("ndakọrịta_level") na "3.6" (a gbanwere paramita ugboro abụọ n'oge gara aga, ma e wezụga 3.6 ụkpụrụ akwadoro bụ 0 (ndabara), 1 na 2). Site ugbu a gaa n'ihu, "compatibility_level" ga-agbanwe gaa na nọmba ụdị nke emere mgbanwe ndị mebiri ndakọrịta. Iji lelee ọkwa ndakọrịta, agbakwunyere ndị na-arụ ọrụ ntụnyere dị iche na main.cf na master.cf, dị ka “<=level” na “<ọkwa” (ndị na-ahụ maka ntụnyere ọkọlọtọ adabaghị, ebe ha ga-atụle 3.10 na-erughị 3.9).

isi: opennet.ru

Tinye a comment