サクサク読めて、アプリ限定の機能も多数!
トップへ戻る
大そうじへの備え
www.postfix.org
[An updated version of this text may be found at https://www.postfix.org/smtp-smuggling.html] Author: Wietse Venema Last update: January 22, 2024 Summary Days before a 10+ day holiday break and associated production change freeze, SEC Consult has published an email spoofing attack that involves a composition of email services with specific differences in the way they handle line endings other than
SMTP Server specific settings Topics covered in this section: Server-side certificate and private key configuration Server-side forward-secrecy configuration Server-side TLS activity logging Enabling TLS in the Postfix SMTP server Client certificate verification Supporting AUTH over TLS only Server-side TLS session cache Server access control Server-side cipher controls Miscellaneous server contro
[An on-line version of this announcement will be available at http://www.postfix.org/announcements/postfix-3.4.0.html] Postfix stable release 3.4.0 is available. This release ends support for legacy release Postfix 3.0. The main changes are below. See the RELEASE_NOTES file for further details. Support for logging to file or stdout, instead of using syslog. Logging to file solves a usability probl
[An on-line version of this announcement will be available at http://www.postfix.org/announcements/postfix-3.2.0.html] Postfix stable release 3.2.0 is available. This release ends support for legacy release Postfix 2.10. The main changes in no particular order are: Elliptic curve negotiation with OpenSSL ≥ 1.0.2. This changes the default smtpd_tls_eecdh_grade setting to "auto", and introduces a ne
[An on-line version of this announcement will be available at http://www.postfix.org/announcements/postfix-3.1.0.html] Postfix stable release 3.1.0 is available. This release ends support for legacy release Postfix 2.9. The main changes in no particular order are: "postfix tls" command to simplify setup of opportunistic TLS, and to simplify SMTP server key/certificate management. Positive and nega
[An on-line version of this announcement will be available at http://www.postfix.org/announcements/postfix-3.0.0.html] Postfix stable release 3.0.0 is available. This release ends support for Postfix 2.8. The main changes in no particular order are: SMTPUTF8 support for internationalized domain names and address localparts as defined in RFC 6530 and related documents. The implementation is based o
Address rewriting when mail is received The cleanup(8) server receives mail from outside of Postfix as well as mail from internal sources such as forwarded mail, undeliverable mail that is bounced to the sender, and postmaster notifications about problems with the mail system. The cleanup(8) server transforms the sender, recipients and message content into a standard form before writing it to an i
Memory corruption in Postfix SMTP server Cyrus SASL support (CVE-2011-1720) Author: Wietse Venema Last update: May 8, 2011 An on-line version of this text will be available at http://www.postfix.org/CVE-2011-1720.html. Summary The Postfix SMTP server has a memory corruption error when the Cyrus SASL library is used with authentication mechanisms other than PLAIN and LOGIN (the ANONYMOUS mechanism
Postfix SMTP relay and access control Introduction The Postfix SMTP server receives mail from the network and is exposed to the big bad world of junk email and viruses. This document introduces the built-in and external methods that control what SMTP mail Postfix will accept, what mistakes to avoid, and how to test your configuration. Topics covered in this document: Relay control, junk mail contr
Managing multiple Postfix instances on a single host Overview This document is a guide to managing multiple Postfix instances on a single host using the postmulti(1) instance manager. Multi-instance support is available with Postfix version 2.6 and later. See the postfix-wrapper(5) manual page for background on the instance management framework, and on how to deploy a custom instance manager. Topi
Purpose of Postfix performance tuning The hints and tips in this document help you improve the performance of Postfix systems that already work. If your Postfix system is unable to receive or deliver mail, then you need to solve those problems first, using the DEBUG_README document as guidance. For tuning external content filter performance, first read the respective information in the FILTER_READ
Purpose of this document This document presents a number of typical Postfix configurations. This document should be reviewed after you have followed the basic configuration steps as described in the BASIC_CONFIGURATION_README document. In particular, do not proceed here if you don't already have Postfix working for local mail submission and for local mail delivery. The first part of this document
Postfix Virtual Domain Hosting Howto Purpose of this document This document requires Postfix version 2.0 or later. This document gives an overview of how Postfix can be used for hosting multiple Internet domains, both for final delivery on the machine itself and for the purpose of forwarding to destinations elsewhere. The text not only describes delivery mechanisms that are built into Postfix, but
Postfix VERP support Postfix versions 1.1 and later support variable envelope return path addresses on request. When VERP style delivery is requested, each recipient of a message receives a customized copy of the message, with his/her own recipient address encoded in the envelope sender address. For example, when VERP style delivery is requested, Postfix delivers mail from "owner-listname@origin"
To have information listed on this page, please send mail to [email protected]. The information listed here is maintained by the respective authors. It is listed without formal evaluation, in other words, no implied warranty of any kind. This page lists tools, add-ons and howtos by subject. Just to be clear on what I am talking about, here is a brief definition of the terminology that is used b
The queue manager (the qmgr(8) server process in the figure) is the heart of Postfix mail delivery. It contacts the smtp(8), lmtp(8), local(8), virtual(8), pipe(8), discard(8) or error(8) delivery agents, and sends a delivery request for one or more recipient addresses. The discard(8) and error(8) delivery agents are special: they discard or bounce all mail, and are not shown in the figure above.
Postfix main.cf file format The Postfix main.cf configuration file specifies a very small subset of all the parameters that control the operation of the Postfix mail system. Parameters not explicitly specified are left at their default values. The general format of the main.cf file is as follows: Each logical line is in the form "parameter = value". Whitespace around the "=" is ignored, as is whit
SMTP Relay/access control Relay/access control overview Access policy delegation Address verification Per-client/user/etc. access Zombie blocking with postscreen ETRN Support LAN connected via UUCP Lookup tables (databases) Lookup table overview CDB Howto Berkeley DB Howto LDAP Howto LMDB Howto Memcache Howto MongoDB Howto MySQL Howto PCRE Howto PostgreSQL Howto SQLite Howto Mailing list support V
All programmers are optimists -- Frederick P. Brooks, Jr. First of all, thank you for your interest in the Postfix project. What is Postfix? It is Wietse Venema's mail server that started life at IBM research as an alternative to the widely-used Sendmail program. After eight years at Google, Wietse continues to maintain Postfix. Postfix attempts to be fast, easy to administer, and secure. The outs
Purpose of this document This document is an introduction to Postfix queue congestion analysis. It explains how the qshape(1) program can help to track down the reason for queue congestion. qshape(1) is bundled with Postfix 2.1 and later source code, under the "auxiliary" directory. This document describes qshape(1) as bundled with Postfix 2.4. This document covers the following topics: Introducin
How Postfix uses SASL authentication SMTP servers need to decide whether an SMTP client is authorized to send mail to remote destinations, or only to destinations that the server itself is responsible for. Usually, SMTP servers accept mail to remote destinations when the client's IP address is in the "same network" as the server's IP address. SMTP clients outside the SMTP server's network need a d
このページを最初にブックマークしてみませんか?
『The Postfix Home Page』の新着エントリーを見る
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
