From owner-freebsd-hackers  Mon Mar  3 03:14:51 1997
Return-Path: <owner-hackers>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id DAA22003
          for hackers-outgoing; Mon, 3 Mar 1997 03:14:51 -0800 (PST)
Received: from nic.follonett.no (nic.follonett.no [194.198.43.10])
          by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA21998
          for <hackers@freebsd.org>; Mon, 3 Mar 1997 03:14:45 -0800 (PST)
Received: (from uucp@localhost) by nic.follonett.no (8.8.5/8.8.3) with UUCP id MAA08486; Mon, 3 Mar 1997 12:13:06 +0100 (MET)
Received: from oo7 (oo7.dimaga.com [192.0.0.65]) by dimaga.com (8.7.5/8.7.2) with SMTP id LAA22732; Mon, 3 Mar 1997 11:58:38 +0100 (MET)
Message-Id: <3.0.32.19970303115837.00abac30@dimaga.com>
X-Sender: eivind@dimaga.com
X-Mailer: Windows Eudora Pro Version 3.0 (32)
Date: Mon, 03 Mar 1997 11:58:39 +0100
To: charlespeters@tecpro.com
From: Eivind Eklund <eivind@dimaga.com>
Subject: Re: Best Packages for email server, ftp server, and mailing
  list 'se
Cc: hackers@freebsd.org
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

At 01:12 AM 3/3/97 -0500, Charles A. Peters wrote:
>I am in the process of setting up an email server, a ftp server, a 
>web server, and perhaps a mailing list server (like Majordomo).  I 
>already know that I will be using the Apache WWW server included with 
>FreeBSD, but I am not sure which ftp server and mail server software 
>that I should go with.
>
>This server will primarily be used to allow my collegues and 
>customers access to email.  I will be maintaining this server via 
>telnet from a remote location.  As I am new to FreeBSD, I am looking 
>for some advise.
>
>Any suggestions!?!

Depends on your security requirements.  For a server where security isn't
paramount, I'd go with sendmail and popper for mail, majordomo for mailing
lists, and wuftpd for FTP.  (None of these are known to have security holes
as of today, but with the exception of popper and possibly majordomo,
they're programmed to invite security holes.  All are fairly feature-rich.)

If security was (very) important, I'd run qmail for mail, use aliases for
the mailing lists, and force users to log in through ssh to read mail.  I'd
run the standard ftpd.  (Feature-poor setup, but secure.)

In all cases I'd use ssh with public keys to log in, and use ipfw to block
all ports I wasn't interested in getting connections on.  Telnet and rlogin
would be among them.



Eivind Eklund perhaps@yes.no http://maybe.yes.no/perhaps/ eivind@freebsd.org