From owner-freebsd-questions Thu Nov 16 16:46:37 2000 Delivered-To: freebsd-questions@freebsd.org Received: from shf102107.hi.pac.army.mil (shf102107.hi.pac.army.mil [141.190.102.107]) by hub.freebsd.org (Postfix) with ESMTP id D731037B4C5 for ; Thu, 16 Nov 2000 16:46:34 -0800 (PST) Received: from localhost (localhost [[UNIX: localhost]]) by shf102107.hi.pac.army.mil (8.10.1/8.10.1) id eAH0jtk02426; Thu, 16 Nov 2000 14:45:55 -1000 From: Gary Dunn Reply-To: gdunn@mac.com Organization: Open Slate Project To: Boris Köster , "Hiu F. Ho" , freebsd-questions@FreeBSD.ORG Subject: Re: Help: Is Sendmail secure? Date: Thu, 16 Nov 2000 14:37:39 -1000 X-Mailer: KMail [version 1.0.28] Content-Type: text/plain References: <5.0.1.4.0.20001116105457.028104d0@192.168.0.99> In-Reply-To: <5.0.1.4.0.20001116105457.028104d0@192.168.0.99> MIME-Version: 1.0 Message-Id: <00111614455500.02423@shf102107.hi.pac.army.mil> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, 16 Nov 2000, Boris Köster wrote: > At 12:54 15.11.2000 -0800, Hiu F. Ho wrote: > > >Hi all, > > > >I need to set up a mail server on FreeBSD 4.x. Sendmail is installed > >automatically when I install FreeBSD 4.x, but I've heard quite a few people > >saying Sendmail is not secure and suggest me to use qmail. > > Most people saying sendmal is insecure are not very known with sendmail. > They do not know how (anti)relay is working and the do not know how > anything about configuring sendmail. The most of these people never > configured a sendmail.conf file and they not understand how it works. > > My favourite mailer is sendmail. If you know how to configure it, you will > have a really great mailer. You have to learn how to configure it, and this > will take some weeks and you have to read a lot of sources and examples. If > you have understand some things, you will wondering about the power of > sendmail. > > If you are a newbie, maybe sendmail could be a problem for you. If you have > enough energy to learn, sendmail is the best for you. Is there a tool for configuring sendmail.conf (and whatever else is involved) that would guide a newbie towards having a secure installation, or a lint-like checker that will warn of vulnerabilities? I want to see FreeBSD (and Linux) become as popular and widespread as Windows. Whenever I see a phrase like "If you are a newbie, maybe xxx could be a problem for you" I cringe. Sure it's fun being proficient at something as thorny as UNIX, but if we defend it on those terms we will not win wide aceptance. -- == Gary Dunn == Honolulu == Open Slate Project To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message