On Mon, Jun 17, 2013 at 2:11 PM, Wietse Venema <wie...@porcupine.org> wrote:
> I suggest that you install a compiled version of Postfix, and that > you use a simpler program to become familiar with the process of > building your own binaries. There existed a project goal to install a postfix with postscreen. The goal was set because one night a botnet had crashed two production mail gateways which were both coming up on retirement dates. The crashing had never been seen before (or since for that matter). There exists another goal of moving all college RHEL4 and RHEL 5 physical servers to RHEL 6 on VM as they reach retirement. The currently available Redhat yum package (binary) for RHEL 6 is postfix 2.6.6. The ftp.wl0.org site has no package for RHEL 6. It does have a 2.9 package for RHEL 5. A development build of a VM using RHEL 5 and 2.9 from ftp.wl0.org was built. Another development build of a VM using RHEL 6 and 2.10.0 from source was built. A team of people examined both development servers and did not detect the problem. The postfix 2.10.0 compiled build on RHEL 6 was selected because it satisfied both goals. Another VM instance was built in a test environment using the exact same scripts (except for IP and hostname; read from include file). It was tested by another team for a few weeks and the current problem was not detected. A production server was built using all the same build scripts that built the previous servers. Only under real production load did the problem become apparent and only after over two weeks of production use. Wietse, Thank you. At this point I must take your advice to my team and management to discuss our options. -- Robert Lopez Unix Systems Administrator Central New Mexico Community College (CNM) 525 Buena Vista SE Albuquerque, New Mexico 87106
