ProHoster > Blog > internet nhau > Shanduro itsva yeExim 4.93 mail server

Shanduro itsva yeExim 4.93 mail server

Mushure memwedzi gumi yekuvandudzwa zvakaitika mail server kuburitswa Exim 4.93, umo magadzirirwo akaunganidzwa akaitwa uye maitiro matsva akawedzerwa. Maererano naNovember otomatiki ongororo anenge miriyoni maseva email, mugove weExim i56.90% (gore rapfuura 56.56%), Postfix inoshandiswa pa34.98% (33.79%) yemasevha etsamba, Sendmail - 3.90% (5.59%), Microsoft Exchange - 0.51% ( 0.85%).

chikuru change:

  • Tsigiro yevatenderi vekunze (RFC 4422) Uchishandisa murairo we "SASL EXTERNAL", mutengi anogona kuzivisa sevha kuti ishandise zvitupa zvakapfuura nekunze masevhisi akadai seIP Security (RFC4301) uye TLS yechokwadi;
  • Yakawedzera kugona kushandisa iyo JSON fomati yekutarisa macheki. Akawedzerawo sarudzo dzemasikirwo emasiki "forall" uye "chero" uchishandisa JSON.
  • Yakawedzerwa $tls_in_cipher_std uye $tls_out_cipher_std mavara ane mazita emasutu ecipher anoenderana nezita kubva kuRFC.
  • Mireza mitsva yakawedzerwa kudzora kuratidzwa kwemeseji maID mulogi (yakaiswa kuburikidza nezvirongwa log_selector): "msg_id" (inogoneswa neyakagadzika) ine chiziviso chemeseji uye "msg_id_created" ine chiziviso chagadzirwa cheshoko idzva.
  • Yakawedzera tsigiro ye "case_insensitive" sarudzo kune "verify=not_blind" modhi yekufuratira chimiro chechimiro panguva yekusimbisa.
  • Yakawedzerwa sarudzo yekuyedza EXPERIMENTAL_TLS_RESUME, inopa kugona kutangidza kubatanidza kwakambovhiringwa TLS.
  • Yakawedzera exim_version sarudzo yekupfuura iyo Exim vhezheni nhamba tambo inobuda munzvimbo dzakasiyana uye yakapfuura nepakati $exim_version uye $version_number zvinosiyana.
  • Yakawedzerwa ${sha2_N:} sarudzo dzevashandisi dzeN=256, 384, 512.
  • Yakashandiswa "$ r_ ..." zvakasiyana-siyana, zvakagadzirirwa kubva pakusarudza nzira uye zviripo zvekushandisa paunenge uchiita zvisarudzo pamusoro pekufambisa uye kusarudzwa kwekufambisa.
  • IPv6 rutsigiro rwakawedzerwa kune SPF yekutarisa zvikumbiro.
  • Paunenge uchiita cheki kuburikidza neDKIM, kugona kusefa nemhando dzekiyi uye hashes kwawedzerwa.
  • Paunenge uchishandisa TLS 1.3, rutsigiro rweOCSP (Online Certificate Status Protocol) yekuwedzera inopihwa checks Chitupa kubvisirwa chimiro.
  • Yakawedzera "smtp: ehlo" chiitiko chekutarisa rondedzero yekushanda inopihwa nebato riri kure.
  • Yakawedzera mutsara wemirairo sarudzo yekufambisa mameseji kubva kune rimwe zita remutsetse kuenda kune rimwe.
  • Akawedzera mabhii ane shanduro dzeTLS dzezvikumbiro zvinopinda nezvinobuda - $tls_in_ver uye $tls_out_ver.
  • Paunenge uchishandisa OpenSSL, basa rawedzerwa kunyora mafaera ane makiyi muNSS fomati yekudhirodha akabatwa network packet. Iro zita refaira rakaiswa kuburikidza neiyo SSLKEYLOGFILE nharaunda inosiyana. Kana uchivaka neGnuTLS, kushanda kwakafanana kunopihwa neGnuTLS zvishandiso, asi zvinoda kumhanya semudzi.

Source: opennet.ru

Voeg