On Fri, Jan 15, 2010 at 3:55 AM, Gilles Chehade <gil...@openbsd.org> wrote:>> "qmail's queue, except for bounce message contents, is crashproof on >> the BSD FFS and most of its variants. " >> > > smtp ensures reliability by working on a temporary queue during writes, > then commiting messages (all of them, including bounces) to the real > queue using an atomic rename. after a successful rename, smtpd tells > the client it accepted the message. > > with this ordering, you can never have smtpd in a state where it has > lost a message after accepting it or where a message is incomplete and > corrupt in the queue because of a power shortage happening at a wrong > timing. either the message is in queue or it's not, and if it's not > then client/mua was not told message is accepted.
This is the answer I was looking for. Thanks!
