Opened 7 months ago

Closed 7 months ago

#21842 closed enhancement (fixed)

postfix-3.10.3

Reported by: Douglas R. Reno Owned by: Bruce Dubbs
Priority: normal Milestone: 12.4
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version

Change History (4)

comment:1 by Bruce Dubbs, 7 months ago

Owner: changed from blfs-book to Bruce Dubbs
Status: newassigned

comment:2 by Bruce Dubbs, 7 months ago

Postfix stable release 3.10.3

The defects exist only with the default configuration "tls_required_enable = yes".

  • Bugfix (defect introduced: Postfix-3.10, date 20250117): include the current TLS security level in the SMTP connection cache lookup key for lookups by next-hop destination, to avoid reusing the same SMTP connection when sending messages with and without a "TLS-Required: no" header. Likewise, include the current TLS security level in the TLS session lookup key, to avoid reusing the same TLS session info when sending messages with and without a "TLS-Required: no" header.
  • Bugfix (defect introduced: Postfix-3.10, date 20250117): the Postfix SMTP client attempted to look up TLSA records even with "TLS-Required: no". This could result in unnecessary failures.

comment:3 by Bruce Dubbs, 7 months ago

This version still needs CC="gcc -std=gnu17". :(

comment:4 by Bruce Dubbs, 7 months ago

Resolution: fixed
Status: assignedclosed

Fixed at commits 

5f114ea0ed Update to IO-Socket-SSL-2.095 (Perl Module).
1a5b1cad3c Update to postfix-3.10.3.
Note: See TracTickets for help on using tickets.