The Postfix mail server has released version 3.10.3, which addresses specific issues that were introduced in the previous version, 3.10. This update focuses on improving security and functionality, particularly regarding the handling of TLS (Transport Layer Security) connections. Key enhancements include the implementation of the current TLS security level in the lookup keys for both SMTP connections and TLS sessions. This change ensures that the Postfix SMTP client does not attempt to find TLSA records when the "TLS-Required: no" header is present, which helps to prevent unnecessary errors during email transmission.
The release fixes defects that were first addressed in the unstable Postfix 3.11 release. These defects primarily affect users with the default configuration setting of "tls_required_enable = yes". Notably, the updates include:
- A bug fix that incorporates the current TLS security level into the SMTP connection cache lookup key. This prevents the reuse of the same SMTP connection when messages are sent with and without the "TLS-Required: no" header. Similar adjustments have been made to the TLS session lookup key.
- Another bug fix resolves an issue where the Postfix SMTP client would still attempt to look up TLSA records despite the presence of the "TLS-Required: no" header, leading to potential failures.
Developers and users can access the updated Postfix source code through the official mirrors listed on the Postfix website.
In summary, the Postfix 3.10.3 release brings crucial security and functionality improvements to enhance email server operations. As email security continues to evolve, these updates reflect the ongoing commitment to maintaining robust and efficient mail server software. Future releases may continue to focus on addressing security vulnerabilities and improving compatibility with various configurations. Users are encouraged to stay updated with the latest versions to benefit from enhancements and fixes
The release fixes defects that were first addressed in the unstable Postfix 3.11 release. These defects primarily affect users with the default configuration setting of "tls_required_enable = yes". Notably, the updates include:
- A bug fix that incorporates the current TLS security level into the SMTP connection cache lookup key. This prevents the reuse of the same SMTP connection when messages are sent with and without the "TLS-Required: no" header. Similar adjustments have been made to the TLS session lookup key.
- Another bug fix resolves an issue where the Postfix SMTP client would still attempt to look up TLSA records despite the presence of the "TLS-Required: no" header, leading to potential failures.
Developers and users can access the updated Postfix source code through the official mirrors listed on the Postfix website.
In summary, the Postfix 3.10.3 release brings crucial security and functionality improvements to enhance email server operations. As email security continues to evolve, these updates reflect the ongoing commitment to maintaining robust and efficient mail server software. Future releases may continue to focus on addressing security vulnerabilities and improving compatibility with various configurations. Users are encouraged to stay updated with the latest versions to benefit from enhancements and fixes
Postfix 3.10.3 released
The Postfix 3.10.3 mail server addresses issues that were introduced in Postfix 3.10. The updates include adding the current TLS security level to the keys used for looking up the SMTP connection and TLS sessions, and making sure that the Postfix SMTP client doesn't try to find TLSA records when the "TLS-Required: no" header is there, which helps prevent unnecessary errors.
