July 2008


Postfix updated to 2.5.3

Postfix 2.5.3 has just been released and I just installed and tested it on my test server. There are no major changes in this release just some bugfixes. If you haven’t experienced any problems there is no pressure to upgrade.

The bugfixes in 2.5.3 are:

  • Bugfix: null-terminate CN comment string after sanitization.
    File: smtpd/smtpd.c.
  • Workaround: avoid “bad address pattern” errors with non-address
    patterns in namadr_list_match() calls. File: util/match_ops.c.
  • Bugfix (introduced 20080207): “cleanup -v” panic because
    the new “SMTP reply” request flag did not have a printable
    name. File: global/cleanup_strflags.c.
  • Cleanup: using “Before-queue content filter”, RFC3848
    information was not added to the headers. Carlos Velasco.
    File smtpd/smtpd.c.
  • Cleanup: a poorly-implemented integer overflow check for
    TCP MSS calculation had the unexpected effect that people
    broke Postfix on LP64 systems while attempting to silence
    a compiler warning. File: util/vstream_tweak.c.
  • Paranoia: defer delivery when a mailbox file is not owned
    by the recipient. Requested by Sebastian Krahmer, SuSE.
    Specify “strict_mailbox_ownership=no” to ignore ownership
    discrepancies. Files: local/mailbox.c, virtual/mailbox.c.

For instructions on how to upgrade Postifx please read Upgrading Postifx.

Postfixadmin upgraded to version 2.2.1.1

Development of Postfixadmin, the webbased tool to allow you to maintain your postfix mailserver installation, is moving forward a lot faster than the last years.

New is the all in one interface where the super user and the domain admin will work. In the 2.1.0 there was a subdirectory called admin which needed to be secured extra. It is now an all in one interface.

The new version still has the same problem as the old one in sending the SMTP commands to fast which will result in the error:

BD5DAF029E: reject: DATA from localhost[127.0.0.1]: 503 5.5.0 : Data command rejected: Improper use of SMTP command pipelining; from= to= proto=ESMTP helo=

This will easily be solved by again editing the ‘functions.inc.php‘. Open the file and find the function ‘smtp_mail‘. Change the following code:

fputs ($fh, “EHLO $smtp_server\r\n”);
$res = smtp_get_response($fh);
fputs ($fh, “MAIL FROM:<$from>\r\n”);
$res = smtp_get_response($fh);
fputs ($fh, “RCPT TO:<$to>\r\n”);
$res = smtp_get_response($fh);
fputs ($fh, “DATA\r\n”);
$res = smtp_get_response($fh);
fputs ($fh, “$data\r\n.\r\n”);
$res = smtp_get_response($fh);
fputs ($fh, “QUIT\r\n”);
$res = smtp_get_response($fh);
fclose ($fh);

into

fputs ($fh, “EHLO $smtp_server\r\n”);
$res = smtp_get_response($fh);
usleep(10000);
fputs ($fh, “MAIL FROM:<$from>\r\n”);
$res = smtp_get_response($fh);
usleep(10000);
fputs ($fh, “RCPT TO:<$to>\r\n”);
$res = smtp_get_response($fh);
usleep(10000);
fputs ($fh, “DATA\r\n”);
$res = smtp_get_response($fh);
usleep(10000);
fputs ($fh, “$data\r\n.\r\n”);
$res = smtp_get_response($fh);
usleep(10000);
fputs ($fh, “QUIT\r\n”);
$res = smtp_get_response($fh);
fclose ($fh);

Full instructions on how to upgrade your current 2.1.0 installation to 2.2.x can be found here: Upgrading Postfix Admin 2.1.0 to 2.2.x

Update on Courier-IMAP 4.4.1 and Courier-Auth 0.61

Sam Varshavchik has released an upgrade to the Courier-Auth daemon and the Courier-IMAP server.

Courier-Auth upgraded to 0.61.0 this release has the following changes:

  • Implement stubs for the SASL EXTERNAL authentication method.
  • Switch to versionless shared libraries. Install all shared libraries just as .so. make install manually removes *.so.0.0 files that were left over from previous versions, and installs a temporary *.so.0 symlink to *.so, for temporary binary ABI compatibility with 0.60. The symlinks will be removed in 0.62.

To upgrade your courier-auth installation read “Upgrading Courier-Auth

Courier-IMAP was upgraded to 4.4.0 and a small configure bug was found and a few days later 4.4.1 was released which compiles without a problem.

  • Optimizations to IMAP keywords. A trade-off with concurrency: faster speed in exchange for a race condition if two concurrent sessions attempt to update keywords on the same message — the last one wins.
  • Add a POP3 login timeout.
  • Fix parsing of backslashes in address fields.
  • Implement SSL certificate based authentication.
  • Fix minor issues with SSL/TLS session caching

To upgrade your courier-IMAP installation read “Upgrading Courier IMAP