From owner-freebsd-security Tue Feb 13 6:18:59 2001 Delivered-To: freebsd-security@freebsd.org Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44]) by hub.freebsd.org (Postfix) with ESMTP id 674EA37B4EC for ; Tue, 13 Feb 2001 06:18:53 -0800 (PST) Received: (from daemon@localhost) by point.osg.gov.bc.ca (8.8.7/8.8.8) id GAA20601; Tue, 13 Feb 2001 06:15:31 -0800 Received: from passer.osg.gov.bc.ca(142.32.110.29) via SMTP by point.osg.gov.bc.ca, id smtpda20599; Tue Feb 13 06:15:21 2001 Received: (from uucp@localhost) by passer.osg.gov.bc.ca (8.11.2/8.9.1) id f1DEFCn91785; Tue, 13 Feb 2001 06:15:12 -0800 (PST) Received: from cwsys9.cwsent.com(10.2.2.1), claiming to be "cwsys.cwsent.com" via SMTP by passer9.cwsent.com, id smtpdV91780; Tue Feb 13 06:14:30 2001 Received: (from uucp@localhost) by cwsys.cwsent.com (8.11.2/8.9.1) id f1DEET913997; Tue, 13 Feb 2001 06:14:29 -0800 (PST) Message-Id: <200102131414.f1DEET913997@cwsys.cwsent.com> Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys" via SMTP by localhost.cwsent.com, id smtpdB13991; Tue Feb 13 06:13:29 2001 X-Mailer: exmh version 2.3.1 01/18/2001 with nmh-1.0.4 Reply-To: Cy Schubert - ITSD Open Systems Group From: Cy Schubert - ITSD Open Systems Group X-Sender: schubert To: David Goddard Cc: Dominic Marks , freebsd-security@FreeBSD.ORG Subject: Re: Secure Servers (SMTP, POP3, FTP) In-reply-to: Your message of "Mon, 12 Feb 2001 22:10:08 GMT." <3A885F40.9C6AD285@acm.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 13 Feb 2001 06:13:29 -0800 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message <3A885F40.9C6AD285@acm.org>, David Goddard writes: > On Sun, 11 Feb 2001, Dominic Marks wrote: > ... > > Mail Options: > > 1. Qmail - Secure, written for FreeBSD (Qwest?), Fast, Configurable > > > 2. Sendmail - Industry standard, works fine, big user base > > > 3. Postfix - Secure, quite light on system resources, growing support > > I can't believe no-one's mentioned Exim (http://www.exim.org/) yet - > doddle to configure (particularly things like virtual domains) and as > far as I understand it pretty secure. I spent a while deliberating > between this and Postfix > for my servers but plumped for Exim after a short evaluation. Given > that I couldn't seperate them on the basis of security I went for Exim > on usability. I say install both on a test machine and give them a > whirl - but maybe someone here can offer a petter perspective on the > security comparison... I'm also surprised that no one has mentioned smtpd (www.obtuse.com, also in the ports collection). It imposes Qmail-like or Postfix-like operation/structure on Sendmail. You can secure Sendmail even further by removing the setuid bit, however that breaks .forward to other programs. If you can live with that, you basically have the same functionality as Qmail without the qmail-aliases afterthought. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message