Mushure megore rekugadzirwa, bazi idzva rakagadzikana rePostfix mail server, vhezheni 3.12.0, raburitswa. Panguva imwe chete, rutsigiro rwePostfix 3.7, rwakaburitswa kutanga kwa2022, rwakamiswa. Kodhi yepurojekiti yakanyorwa neC uye inogoverwa pasi peEPL 2.0 (Eclipse Public License) uye IPL 1.0 (IBM Public License).
Postfix ndeimwe yemapurojekiti asingawanzoonekwi anobatanidza kuchengetedzeka kwakanyanya, kuvimbika, uye mashandiro, anowanikwa kuburikidza nehurongwa hwemapurogiramu akawanda hunoparadzanisa vanobata mumwe nemumwe, pamwe nehurongwa hwakasimba hwekodhi uye mutemo wekuongorora mapatch. Kuti udzivirire kubva mukukanganisa kwekurangarira, purojekiti iyi inoshandisa shanduro dzakachengetedzwa dzemabasa ekugovera memory uye deallocation, pamwe neseti yemabasa ekugadzirisa abstract wrapper ekutarisira buffer (kutarisa kana buffer yakawandisa uye kuwana freed memory), mashandiro emafaira, kuumbwa kwezvinobuda, buffered I/O, uye string manipulation (kusanganisira kugona kushanda netambo dzakakura uye automatic string resize).
Zvichienderana neongororo yekupedzisira yakazvigadzira yega yepositi inosvika zviuru mazana mashanu servers (kuburitswa kwemushumo kuchamiswa mushure meChikunguru 2025), Postfix inoshandiswa pa37.88% (36.81% pagore rapfuura) yemaseva etsamba, mugove weExim i55.59% (56.61% pagore rapfuura), Sendmail - 3.55% (3.60%), MailEnable - 1.81% (1.82%), MDaemon - 0.40% (0.40%), Microsoft Exchange - 0.20% (0.19%), OpenSMTPD - 0.12% (0.09%).
Zvitsva zvikuru:
- Проведена работа по упрощению миграции с поисковых таблиц «hash:» и «btree:» на «lmdb:» или «cdb:» в связи с прекращением поставки в некоторых дистрибутивах Linux библиотек BerkeleyDB. Для сохранения совместимости с инструментарием Mailman, запускающим команду «postmap hash:/path/to/file» при добавлении или удалении списков рассылки, в Postfix добавлена поддержка автоматического перенаправления подобных команд на варианты с поддерживаемыми типам БД.
- Nekuda kweizvozvo, kubatana nemaseva eSMTP uchishandisa TLS encryption kunogoneswa. Mumagadzirirwo eSMTP client, parameter ye smtp_tls_security_level inoiswa ku "may" kana Postfix yakavakwa nerutsigiro rweTLS. Kukosha kwe "may" kunogonesa TLS kumaseva anotsigira encryption, asi kunobvumira kudzokera kumashure pakuchinjisa data kana sevha isingatsigire TLS.
- ESMTP inotsigira "REQUIRETLS" extension (RFC 8689), iyo inobvumira mutumi kukumbira TLS encryption yakavimbiswa munzira yese yekutumira meseji. Munzira iyi, chero sevha yeSMTP kana LMTP inobatanidzwa mukutumira meseji inofanira kutsigira REQUIRETLS uye kusimbiswa kwakasimba kuburikidza neDANE kana STS. Pakutumira meseji neketani kune mamwe masevha, REQUIRETLS inofanirawo kushandiswa.
- Nhamba yekuchengetedza yeTLS yava kuratidzwa mumalogi, zvichireva kuti kana nhamba yeREQUIRETLS ichidikanwa kutumira meseji, ruzivo nezvekushandiswa kweREQUIRETLS ruchachengetwa mulogi.
- Paramita ye smtp_tls_enforce_sts_mx_patterns yawedzerwa. Paramita iyi inobvumira kuenderana pakati pePostfix SMTP client nemapulagini eMTA-STS (MTA Strict Transport Security) anoda rutsigiro rweTLSRPT rweSTS attribute redirection. Kana paramita iyi ikagoneswa nedefault, Postfix SMTP client ichabatana neMX server chete kana zita rayo richienderana nepattern yakatsanangurwa muSTS policy. Zvikasadaro, maitiro ekare achashandiswa—kubatanidza kuMX servers zvichibva paDNS MX records kana server certificate ichienderana neSTS policy. MTA-STS mechanism inobvumira kuzivisa client inobatanidza neinternet isina kuchengetedzeka nezve mukana uye maparamita ekugadzira secure TLS connection. Rutsigiro rweparamita iyi rwakawedzerwawo kune postfix-tlspol uye postfix-mta-sts-resolver utilities.
- Rutsigiro rwakawedzerwa rwemaalgorithms ekudzivirira encryption equantum pakuvaka neOpenSSL 3.5 uye gare gare.
- Maparamita gumi nematanhatu ekugadzirisa akabviswa, uye kana akashandiswa, yambiro icharatidzwa mulog inoratidza kubviswa kwawo mune ramangwana. Aya mapamita akabviswa anosanganisira "virtual_maps," "fallback_relay," "postscreen_whitelist_interfaces," uye "smtpd_client_connection_limit_exceptions."
- Yakawedzera rutsigiro rwekuburitsa data mufomati yeJSON yemirairo: "postconf -j|-jM|-jF|-jP", "postalias -jq|-js", "postmap -jq|-js" uye "postmulti -jl".
- Kugadziriswa kwezvikanganiso mumafirita eMilter kunoitika pakugadzirisa mameseji anogamuchirwa kuburikidza nekubatanidza kweSMTP kwenguva refu. Paramita ye #milter_default_action yachinjwa kubva pa "tempfail" kuenda pa "shutdown," zvinoreva kuvhara kubatana kune mutengi.
Source: opennet.ru
