On Sunday, Jul 13, 2003, at 19:38 US/Central, David Phillips wrote:
> The code for the core part of OpenSSL has almost twice as lines as 
> qmail.
> It has also had several security holes.  Do you really want to stuff 
> all of
> that into the SMTP server?

Actually yes i would. Either way the code is open for peer review.

> Due to qmail's modularity, you can add SMTP AUTH or TLS without 
> modifying
> qmail-smtpd:

Why when my choice of smtp does it all. And does it well. And does it 
safely. And doesn't create additional administration overhead.

> http://www.suspectclass.com/~sgifford/smtp_auth/
> http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/
>

Additional pieces means more to update, and more to configure, and more 
to maintain. No thanks. I update my smtp server in one fell swoop.

I may yet evaluate postfix. We shall see.

> You might also take an alternate approach: replace qmail-smtpd with a
> different SMTP server:
>
> http://untroubled.org/mailfront/
>
> -- 
> David Phillips <david at acz.org>
> http://david.acz.org/
>
>
> _______________________________________________
> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
> http://www.mn-linux.org tclug-list at mn-linux.org
> https://mailman.real-time.com/mailman/listinfo/tclug-list
>
>
--

Ben Lutgens
System Administrator, Server Wizard, Email Guru
US Admins, Inc


_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
http://www.mn-linux.org tclug-list at mn-linux.org
https://mailman.real-time.com/mailman/listinfo/tclug-list