My main design goals for the MTA are:
- In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you’re 100% sure it’s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections.
- In some cases you can't really avoid placing mails into a queue. This could be because of temporary failures or maybe because of an abnormal load spike. A mail queue in local disk isn't very nice though, because if the local disk dies, the queued mails are lost. Dovecot MTA will allow the queue to be in object storage and it will also likely support replication (similar to current dsync replication). In both of these cases if a server dies, another server can quickly take over its queue and continue handling it.
- Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not:
- Require DKIM configuration. All outgoing mails will be DKIM signed.
- Require the domain’s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too)
- Require SSL certificates to be configured and always allow remote to use STARTTLS
- Require DANE TLSA record to exist and match the server's configured SSL cert
- Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely?
- Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize.
- Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them.
- Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn’t be necessary to reimplement all the tools and filters.
You have touched some pleasant factors here. Any way keep up writing. 바카라사이트
ReplyDeleteI recently had the pleasure of experiencing the exceptional services provided by Kaya VIP Travel in Istanbul, and I must say, it was truly remarkable. From the moment I made my reservation until the end of my journey, their professionalism and dedication to customer satisfaction were evident.
DeleteThe comfort and luxury offered by their VIP class Mercedes Vito vehicles surpassed my expectations. The spacious interior, comfortable seats, and meticulous interior design truly made my travel experience a memorable one. I felt pampered and at ease throughout the journey.
One aspect that truly stood out for me was the level of safety and security provided by Kaya VIP Travel. Their experienced drivers, coupled with their TURSAB registered agency, ensured a journey that was not only enjoyable but also reliable and secure. It was comforting to know that my well-being was their top priority.
Furthermore, the flexibility and personalized service offered by Kaya VIP Travel were commendable. They tailored the journey according to my specific needs and requests, going above and beyond to ensure my satisfaction. Their attention to detail and commitment to providing a seamless experience were truly impressive.
Overall, my experience with Kaya VIP Travel was exceptional. They set a high standard for VIP transfer services in Istanbul, and I would highly recommend them to anyone seeking a comfortable, luxurious, and reliable travel experience. Whether it's for business or leisure, Kaya VIP Travel will exceed your expectations and make your journey truly unforgettable.
Masa sandalye kiralama hizmeti, etkinliklerinizi veya organizasyonlarınızı daha konforlu ve pratik hale getirmenin ideal bir yoludur. Özel etkinlikler, düğünler, iş toplantıları veya seminerler gibi birçok farklı etkinlik için masa ve sandalye ihtiyacınızı karşılamak önemlidir.
DeleteNice one! thank you so much! Thank you for sharing this post. Your blog posts are more interesting and impressive. 바카라사이트
ReplyDeleteGood post. I study one thing more difficult on totally different blogs everyday. It can all the time be stimulating to learn content from different writers and follow a bit one thing from their store.
ReplyDeletemajortotosite
racesite
oncasinosite
totopick
I would appreciate you that you pick up an important topic to write a thoroughly informative post on. I hope that you never stop and keep posting such valuable content 바카라사이트
ReplyDeleteMEGA GAME, try all slots for free credit. mega game
ReplyDeleteThe best online slots game PG SLOT direct website. https://pgslot-games.com/
The best online slots game PG SLOT direct website. https://pgslot-games.co/
I would like to use the ability of saying thanks to you for this article here. I have usually enjoyed checking out this site. 온라인카지노
ReplyDeleteGlad to chat this blog, I seem to be forward to more reliable articles, Thankyou 바카라사이트
ReplyDeleteI am happy to find numerous helpful info right here in the publish, great job. 카지노사이트
ReplyDeletebetflix Slots Auto Deposit-Withdrawal Financial System Safe, Accurate, Fast
ReplyDeleteIt was very well authored and easy to understand. Thanks alot. ทางเข้าjoker
ReplyDeleteI don't usually comment, but I have to say thank you for this amazing post.
ReplyDelete토토
안전놀이터
우리카지노탑
카지노사이트
This is a great inspiring article. 카지노사이트
ReplyDeleteThanks For sharing such valuable information. 토토사이트
ReplyDelete
ReplyDeleteThanks again for the post. Great blog. Cool.
I like the helpful information you provide in your articles.
스포츠토토365
I do agree with all of the ideas you’ve presented in your post.바카라사이트닷컴
ReplyDeleteThank you for nice information. Please visit our web: click here
ReplyDeleteThanks for Nice and Informative Post. This article is really contains lot more information about This Topic. 바카라사이트
ReplyDeletevape modules from famous brands, they're all here.Long-term stable supply, holiday discounts, regular discount code issued.Augvape Kits,Artery Nugget GT.
ReplyDeletevapeciga
토토사이트
ReplyDeleteReally a great addition. I have read this marvelous post.
Thanks for Nice and Informative Post. This article is really contains lot more information nice web info for you 토토사이트
ReplyDeleteThe evolution of the peppered moth is an example of natural .토토사이트
ReplyDeleteI have read several articles on your webpage that have characteristics that I want to learn about, which is why I keep coming back. As a student who frequently uses assignment help edinburgh service and requires help with his assignments, I am thrilled to learn about those blogs.
ReplyDeletethank you for sharing this post! you done great effort
ReplyDeleteAbogado DUI Fredericksburg
This is to helpful, I have read here all post.
ReplyDeleteissizlik maaşı hesaplama işssizlik maaşı hesaplama en kolay 2023
ReplyDeleteIt has a strong voice and perspective that is unique and memorable.메이저 토토
ReplyDeletemotorcycle accident lawyer near meThanks for sharing a very useful blog commenting website
ReplyDeleteNice informative blog to read. Thanks for sharing this beautiful post. Keep sharing more interesting and informative blogs like this. Reckless Driving Rockbridge VA Lawyer
ReplyDeleteThanks for sharing this post it's all information is really helpful for all us.
ReplyDeletemejor abogado de accidentes de moto
abogados de accidentes de motocicleta cerca de mí