Emva konyaka wophuhliso, isebe elitsha elizinzileyo leseva yeposi yePostfix, inguqulelo 3.12.0, likhutshiwe. Kwangaxeshanye, inkxaso yePostfix 3.7, ekhutshwe ekuqaleni kuka-2022, iyekile. Ikhowudi yeprojekthi ibhalwe ngo-C kwaye isasazwa phantsi kwe-EPL 2.0 (Eclipse Public License) kunye ne-IPL 1.0 (IBM Public License).
I-Postfix yenye yeeprojekthi ezingaqhelekanga ezidibanisa ukhuseleko oluphezulu, ukuthembeka, kunye nokusebenza, okufezekiswa ngoyilo lweenkqubo ezininzi oluhlukanisa abaphathi ngabanye, kunye nomgaqo-nkqubo oqinileyo wesakhiwo sekhowudi kunye nomgaqo-nkqubo wokuhlola iipatch. Ukukhusela kwiimpazamo zememori, le projekthi isebenzisa iinguqulelo ezikhuselweyo zemisebenzi yokwabiwa kwememori kunye nokunikezelwa kweenkonzo, kunye neseti yemisebenzi ye-abstract wrapper yolawulo lwe-buffer (ukujonga ukuba kukho i-buffer overruns kunye nokufikelela kwimemori ekhululekileyo), imisebenzi yefayile, ukufometha kwemveliso, i-buffered I/O, kunye nokuguqulwa kwentambo (kubandakanya ubuchule bokusebenza ngentambo ezinobukhulu obungacwangciswanga kunye nokutshintsha ubungakanani bentambo ngokuzenzekelayo).
Ngokutsho kophando lokugqibela oluzenzekelayo lweposi ezimalunga nama-500 amawaka abancedisi (upapasho lwengxelo luya kuyekiswa emva kukaJulayi 2025), iPostfix isetyenziswa kwi-37.88% (36.81% kunyaka ophelileyo) yeeseva zeposi, isabelo se-Exim yi-55.59% (56.61% kunyaka ophelileyo), i-Sendmail - 3.55% (3.60%), i-MailEnable - 1.81% (1.82%), i-MDaemon - 0.40% (0.40%), iMicrosoft Exchange - 0.20% (0.19%), i-OpenSMTPD - 0.12% (0.09%).
Iinguqulelo eziphambili:
- Kuye kwenziwa umsebenzi wokwenza kube lula ukufuduka ukusuka kwiitafile zokukhangela ze-"hash:" kunye ne-"btree:" ukuya kwi-"lmdb:" okanye "cdb:" ngenxa yokuyekiswa kweelayibrari zeBerkeleyDB kwezinye iindawo zokusasazwa kweLinux. Ukuze kugcinwe ukuhambelana nezixhobo zeMailman ezisebenzisa umyalelo we-"postmap hash:/path/to/file" xa wongeza okanye ususa uluhlu lweemeyile, iPostfix ngoku ixhasa ukuhanjiswa ngokuzenzekelayo kwemiyalelo enjalo kwiindidi ezahlukeneyo ezineentlobo zedathabheyisi ezixhaswayo.
- Ngokuzenzekelayo, uqhagamshelo kwiiseva ze-SMTP ezisebenzisa ukubethela kwe-TLS luvuliwe. Kwizicwangciso zeklayenti ye-SMTP, ipharamitha ye-smtp_tls_security_level isetiwe kwi-"may" ukuba iPostfix yakhiwe ngenkxaso ye-TLS. Ixabiso le-"may" livumela i-TLS kwiiseva ezixhasa ukubethela, kodwa livumela ukubuyela umva ekudlulisweni kwedatha ecacileyo ukuba iseva ayixhasi i-TLS.
- I-ESMTP ixhasa ulwandiso lwe-"REQUIRETLS" (RFC 8689), oluvumela umthumeli ukuba acele ukubethela kwe-TLS okuqinisekisiweyo kuyo yonke indlela yokuhambisa imiyalezo. Kule ndlela, nayiphi na iseva ye-SMTP okanye ye-LMTP ethatha inxaxheba ekudluliseleni imiyalezo kufuneka ixhase i-REQUIRETLS kunye nokuqinisekiswa okuqinileyo nge-DANE okanye i-STS. Xa udlulisela umyalezo kwikhonkco kwezinye iiseva, kufuneka kusetyenziswe ne-REQUIRETLS.
- Inqanaba lokhuseleko lwe-TLS ngoku libonakala kwiilog, oko kuthetha ukuba ukuba inqanaba le-REQUIRETLS liyadingeka ukuze kudluliselwe umyalezo, ulwazi malunga nokusetyenziswa kwe-REQUIRETLS ngoku luya kugcinwa kwilog.
- Ipharamitha ye-smtp_tls_enforce_sts_mx_patterns yongeziwe. Le pharamitha ivumela ukuhambelana phakathi kweklayenti yePostfix SMTP kunye neeplagi zeMTA-STS (MTA Strict Transport Security) ezifuna inkxaso yeTLSRPT yokuqondisa kwakhona uphawu lwe-STS. Xa le pharamitha inikwe amandla ngokuzenzekelayo, iklayenti yePostfix SMTP iya kuqhagamshela kwiseva yeMX kuphela ukuba igama layo lihambelana nepateni echazwe kwimigaqo-nkqubo ye-STS. Ngaphandle koko, ukuziphatha kwelifa kuya kusetyenziswa—ukudibanisa kwiiseva zeMX ngokusekelwe kwiirekhodi ze-DNS MX ukuba isatifikethi seseva sihambelana nemigaqo-nkqubo ye-STS. Indlela ye-MTA-STS ivumela ukwazisa iklayenti edibanisa ngetshaneli engakhuselekanga malunga nokwenzeka kunye neeparameter zokuseka uqhagamshelo olukhuselekileyo lwe-TLS. Inkxaso yale pharamitha yongezwe nakwii-utility ze-postfix-tlspol kunye ne-postfix-mta-sts-resolver.
- Inkxaso eyongezelelweyo yee-algorithms ze-encryption ezimelana ne-quantum xa zakhiwa nge-OpenSSL 3.5 kunye nokukhutshwa kamva.
- Iiparameter ezilishumi elinesithandathu zoqwalaselo ziye zarhoxiswa, kwaye xa zisetyenziswa, isilumkiso siya kuboniswa kwilog esibonisa ukuba ziyasuswa kwinguqulelo yexesha elizayo. Ezi parameters ziye zarhoxiswa ziquka "virtual_maps," "fallback_relay," "postscreen_whitelist_interfaces," kunye ne-"smtpd_client_connection_limit_exceptions."
- Yongeza inkxaso yokukhupha idatha kwifomathi yeJSON kwimiyalelo: "postconf -j|-jM|-jF|-jP", "postalias -jq|-js", "postmap -jq|-js" kunye ne "postmulti -jl".
- Ukuphuculwa kokuphathwa kweempazamo kwiifilitha zeMilter ezenzeka xa kusetyenzwa imiyalezo efunyenwe ngoqhagamshelo lweSMTP olusele lukhona. Ipharamitha ye-#milter_default_action itshintshiwe ukusuka kwi-"tempfail" ukuya kwi-"shutdown," nto leyo ethetha ukuvala uqhagamshelo kumthengi.
umthombo: opennet.ru
