> On Oct 26, 2017, at 5:29 PM, cac...@quantum-equities.com wrote: > > I am surprised with this sprawl, in the 21st Century. In 30 minutes > I've figured out and implemented DKIM.
DKIM is comparatively simple, it does just one thing. And yet, you really should fix your DNS, you may think you have working DKIM, but it's not much use if your domain is unresolvable from a large swath of the Internet, because DNSSEC is promised by the parent zone, but not implemented in the child: http://dnsviz.net/d/delphi-real-estate.com/dnssec/ $ dig -t mx delphi-real-estate.com @8.8.8.8 ; <<>> DiG 9.11.2 <<>> -t mx delphi-real-estate.com @8.8.8.8 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 47769 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;delphi-real-estate.com. IN MX ;; Query time: 113 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Thu Oct 26 22:33:36 EDT 2017 ;; MSG SIZE rcvd: 51 An MTA is more like the construction materials for a house and carpentry tools than like a furnished apartment. To use a furnished apartment you just need the keys and and some idea of which closets hold the towels, dishes, cleaning supplies, ... To use a carpenters toolbox and materials to build a house a significant investment in training may be required. > But it appears to me that Postfix has evolved organically (Read: disorganized) > as have many legacy applications like Apache used to be. You're wrong of course, Postfix has been designed and implemented with much care. What we've not done is maintained a free book along with the software. Postfix comes with "reference documentation", and topic-specific tutorials: http://www.postfix.org/documentation.html http://www.postfix.org/OVERVIEW.html http://www.postfix.org/BASIC_CONFIGURATION_README.html http://www.postfix.org/STANDARD_CONFIGURATION_README.html http://www.postfix.org/ADDRESS_REWRITING_README.html ... These seem to do the job for most Postfix users. > The documentation you refer to is there alright, but it's all about > bit-twiddling, nothing about concepts and methodologies. That's what the Postfix book by Patrick and Ralf is for. Even the Sendmail book is probably a good place to learn about running a mail system, and the architectural pieces would be a useful start for understanding Postfix. The Exim project maintains what is essentially an online book. So while its code quality, security and delivery performance don't match Postfix, perhaps the its greater mix of built-in features and the online "book" mean that you'd be better off with Exim: https://www.exim.org/exim-html-current/doc/html/spec_html/index.html -- Viktor.
