version 1.52, 2014/04/17 02:34:12 |
version 1.53, 2014/04/17 14:20:45 |
|
|
</ul> |
</ul> |
<p> |
<p> |
|
|
<li>OpenSMTPD 5.4.2: |
<li>OpenSMTPD 5.4.2 (includes changes to 5.4.1): |
<ul> |
<ul> |
<li>... |
<li>Introduce initial support for DSN extension: |
|
<ul> |
|
<li>NOTIFY=SUCCESS, NOTIFY=FAILURE, NOTIFY=DELAY, NOTIFY=NEVER |
|
<li>RET=HDRS, RET=FULL |
|
</ul> |
|
<li>Introduce initial support for ENHANCEDSTATUSCODES extension: |
|
<ul> |
|
<li>smtp process returns Enhanced Status Codes for most commands. |
|
<li>other processes now have an API to return more precise codes ... |
|
<li>... which will be improved further with each version. |
|
</ul> |
|
<li>Improved <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpctl&sektion=8">smtpctl(8)</a>: |
|
<ul> |
|
<li>sendmail mode now supports DSN parameters |
|
<li>Can now pause/resume a source address -> destination domain route. |
|
<li>Can now display status of processes with smtpctl show status. |
|
<li>show relays: displays list of currently active relays. |
|
<li>show routes: displays status of routes currently known by smtpd. |
|
<li>show hosts: displays list of known remote MX. |
|
<li>show hoststats: display status of last delivery for active domains. |
|
<li>resume route: resumes route temporarily disable by the MTA. |
|
<li>pause/resume envelope: allows pausing individual envelopes. |
|
<li>pause/resume message: allows pausing individual messages. |
|
<li>encrypt: allows generating credentials suitable for authentication. |
|
<li>show message/envelope is now compression/encryption aware. |
|
</ul> |
|
<li>Introduced SNI support. |
|
<li>Improved configuration file: |
|
<ul> |
|
<li>Removed last known ambiguity in grammar. |
|
<li>Much simpler configuration for TLS-enabled hosts. |
|
<li>Most parameters are now swappable in listen and accept rules. |
|
<li>Conditions may be negated (ie: accept from ! <trusted> ...) |
|
<li>Forward-only rules can be declared to impose ~/.forward files. |
|
<li>New "recipient" keyword allows accept rule to provide a whitelist. |
|
<li>Sender and recipient tables accept wildcard in their domains. |
|
</ul> |
|
<li>TLS generic improvements: |
|
<ul> |
|
<li>Support for TLS Perfect Forward Secrecy. |
|
<li>Support for providing custom CA certificate. |
|
</ul> |
|
<li>MTA improvements: |
|
<ul> |
|
<li>mta may now require remote hosts to present valid certificates. |
|
<li>Always attempt TLS before falling back to plaintext. |
|
<li>Always present certificate if one is available. |
|
<li>AUTH LOGIN now supported. |
|
<li>mta can now specify a EHLO-hostname when relaying. |
|
</ul> |
|
<li>SMTP server improvements: |
|
<ul> |
|
<li>inet4-only and inet6-only listeners are now possible. |
|
<li>Listeners may now hide the From part in a Received-line. |
|
<li>Listeners may require clients to provide a valid certificate. |
|
<li>Banner hostname can now be dynamically fetched from a table. |
|
</ul> |
|
<li>Queue improvements: |
|
<ul> |
|
<li>Introduce an envelope cache in the queue to improve disk-IO pattern. |
|
</ul> |
|
<li>Documentation: |
|
<ul> |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=table&sektion=5">table(5)</a> describes format for static, file and db backends. |
|
<li>sendmail(8) describes our "sendmail" interface. |
|
</ul> |
|
<li>Reduced memory-usage in both general and stressed cases. |
|
<li>OpenSMTPD now automagically upgrades queue if format changes! |
|
<li>Support Qmail-like "sticky home". |
|
<li>Support for authenticating users from a credentials table. |
|
<li>Introduce <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=passwd&sektion=5">passwd(5)</a> table backend for user and credentials lookup. |
|
<li>Expansion variables in ~/.forward now supports modifiers. |
|
<li>Much more efficient scheduler! |
|
<li>Many documentation fixes and improvements. |
|
<li>And a lot of minor bug-fixes and internal cleanup! |
</ul> |
</ul> |
<p> |
<p> |
|
|