1. Forum
  2. Usenet
  3. COMP.MAIL.SENDMAIL

  • sendmail 8.17.0.Alpha0

    From Claus =?iso-8859-1?Q?A=DFmann?= @21:1/5 to All on Mon Apr 5 19:13:19 2021
    sendmail 8.17.0.Alpha0 is available for testing. It has experimental
    support for MTA-STS, enhancements for EAI, and fixes some problems.

    8.17.0/8.17.0 202X/XX/XX
    Experimental support for SMTPUTF8 (EAI, see RFC 6530-6533)
    is available when using the compile time option USE_EAI
    (see also devtools/Site/site.config.m4.sample for other
    required settings) and the cf option SmtpUTF8.
    For mail submission the new command line option -U must
    be used to specify SMTPUTF8.
    Please test and provide feedback.
    Experimental support for SMTP MTA Strict Transport Security
    (MTA-STS, see RFC 8461) is available when using
    - the compile time option _FFR_MTA_STS,
    - FEATURE(sts), which implicitly sets the cf option
    StrictTransportSecurity,
    - postfix-mta-sts-resolver, see
    https://github.com/Snawoot/postfix-mta-sts-resolver.git
    New ruleset clt_features which can be used to select features
    in the SMTP client per server. Currently only two
    flags are available: D/M to disable DANE/MTA-STS,
    respectively.
    Avoid leaking session macros for an envelope between
    delivery attempts to different servers. This problem
    could have affected check_compat.
    Avoid leaking actual SMTP replies between delivery attempts
    to different servers which could cause bogus logging
    of reply= entries.
    Change default SMTP reply code for STARTTLS related problems
    from 403 to 454 to better match the RFCs.
    Fix a theoretical buffer overflow when encountering an
    unknown/unsupported socket address family on an
    operating system where sa_data is larger than 30
    (the standard is 14). Based on patch by Toomas Soome.
    Added Files:
    cf/feature/sts.m4

    Available at:
    https://ftp.sendmail.org/snapshots/sendmail.8.17.0.Alpha0.tar.gz https://ftp.sendmail.org/snapshots/sendmail.8.17.0.Alpha0.tar.gz.sig

    SHA256 (sendmail.8.17.0.Alpha0.tar.gz) = ddb23b7a9bf622af1eaee94fdf13431f9e5889860afbe2a977d09fb7befbeab5
    SHA256 (sendmail.8.17.0.Alpha0.tar.gz.sig) = a73a59e22a72ba64f7251dfc77453fe5b4c9c1d59939d5798fb202e507858aec


    --
    Note: please read the netiquette before posting. I will almost never
    reply to top-postings which include a full copy of the previous
    article(s) at the end because it's annoying, shows that the poster

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Grant Taylor@21:1/5 to All on Mon Apr 5 13:51:24 2021
    On 4/5/21 1:13 PM, Claus Aßmann wrote:
    sendmail 8.17.0.Alpha0 is available for testing. It has experimental
    support for MTA-STS, enhancements for EAI, and fixes some problems.

    Thank you for your efforts Claus.

    The MTA-STS and SMTPUTF8 look quite interesting.

    It looks like the MTA-STS is using the Postfix MTA-STS resolver as a
    socket map to determine some expected connection parameters. I like the methodology.

    I look forward to both trying these and for them to progress out of
    alpha status.

    Thank you again for all that you do.



    --
    Grant. . . .
    unix || die

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From John Levine@21:1/5 to All on Wed Apr 14 20:51:49 2021
    According to Claus Aßmann <ml+sendmail(-no-copies-please)@esmtp.org>: >sendmail 8.17.0.Alpha0 is available for testing. It has experimental
    support for MTA-STS, enhancements for EAI, and fixes some problems. ...

    Can you say on which operating systems it's likely to work better or worse? I'll be installing it on a VPS and it's as easy to install one OS as another.

    My default is FreeBSD, will use that unless I hear that there's likely to
    be more system-specific issues to sort out.

    --
    Regards,
    John Levine, johnl@taugh.com, Primary Perpetrator of "The Internet for Dummies",
    Please consider the environment before reading this e-mail. https://jl.ly

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Claus =?iso-8859-1?Q?A=DFmann?= @21:1/5 to John Levine on Thu Apr 15 04:37:53 2021
    John Levine wrote:

    Can you say on which operating systems it's likely to work better or worse?

    My default is FreeBSD, will use that unless I hear that there's likely to

    FreeBSD and OpenBSD are fine. CentOS is ok. Unfortunately I don't
    have access to other OS for testing anymore, so we rely on feedback
    from users to be informed about potential problems.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)