The Persisting Weakness of Postfix Mail Transfer Agent

Email marketing used to be a legitimate business, as marketing teams globally used email to promote their products and services to their target leads. Unfortunately, the once used to be a genuine platform where marketing teams operate are now perceived as associated with spammers. Today's various mail transfer agents from many vendors (the heart of an email system) are increasingly becoming spam-aware. However, due to the understanding that complexity is the enemy of security, keeping them in nimble, fast and not bloated are uncompromising vital traits.

Postfix Anti-spam

While the decades of competition between the open source mail transfer agent, Postfix and Microsoft Exchange, has been raging to a point that other competing mail transfer agents went irrelevant. The fight against spam went into the shoulders of the email client's developers like Mozilla and Microsoft instead of the mail transfer agents. Postfix antispam specifically has been placed on the back burner, as updates that are connected with retrofitting new technologies like Elliptic Curve Negotiation, OpenSSL, and integration with MySQL were the priorities since Postfix version 3.2. That is basically more than two decades of ignoring the need for a Postfix antispam. Spam started since 1978, and by 1998 it is not acceptable for the open source community to not produce their own Postfix antispam.

This fact is alarming, given that an anti spam system in the mail transfer agents could have been a great barrier to minimize the amount of spam being received by the mail servers. Being open source, Postfix antispam can be developed with the least level of time investment. Postfix antispam can be retrofitted everywhere there is an installation of Postfix with minimal downtime, compared to the MS Exchange system that directly integrates to Active Directory, where any changes may negatively affect other parts of the system aside from the emails. Postfix antispam however does not exist, as developers in the open source world still continue to downplay the need for it.

The most practical security practice to apply to email systems, whether using MS Exchange or Postfix platform is the use of an external system that filters email. One such example is Comodo Dome Anti Spam, from a trusted name in security and privacy, Comodo. It is either a hosted service from Comodo cloud or an onsite hardware-appliance that runs in parallel with the already existing mail server. Compared to postfix antispam that is crude at best, Comodo Dome Anti Spam prevents spam emails from reaching the user's mailbox. This fact is alarming, given that an anti spam system in the mail transfer agents could have been a great barrier to minimize the amount of spam being received by the mail servers.

Postfix has been publicly available since December of 1998. In its 21 years of existence, it features no Postfix antispam. It could have matured itself for 2 decades and have reached the quality of a commercial anti spam product such as Comodo Dome Anti Spam.

Comodo Dome Anti Spam protects both Postfix and Exchange-based email systems from malicious attachments and links. Heuristics cloud-based Valkyrie scan engine has real-time protection and behavioral monitoring, capturing new strains of spam. This is incomparable, if Postfix antispam only exist, it could have been very beneficial. Today the spammers have all the tools at their disposal to further improve their spam, they can easily bypass any crude Postfix antispam. Comodo Dome Anti Spam has a comprehensive anti spam algorithm that when implemented can benefit largely any enterprise regardless of size. Try Comodo Dome Anti Spam today.


Start Your 30-Day Free Trial Now