From owner-freebsd-questions@freebsd.org Fri Aug 11 00:51:22 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E7844C7E1CB for ; Fri, 11 Aug 2017 00:51:22 +0000 (UTC) (envelope-from mikhailg@webanoide.org) Received: from msa.san.navalradio.net (msa.san.navalradio.net [206.251.255.83]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id D082F7CCB0 for ; Fri, 11 Aug 2017 00:51:21 +0000 (UTC) (envelope-from mikhailg@webanoide.org) Received: from [192.168.0.121] ([172.18.128.200]) (authenticated bits=0) by msa.san.navalradio.net (8.15.2/8.15.2) with ESMTPA id v7B0jKeH072494; Fri, 11 Aug 2017 00:45:21 GMT (envelope-from mikhailg@webanoide.org) X-Authentication-Warning: msa.san.navalradio.net: Host [172.18.128.200] claimed to be [192.168.0.121] Subject: Re: sendmail seperate mta/msa processes To: freebsd-questions@freebsd.org References: <20170806152213.GB29094@FreeBSD> <20170810192912.GB9482@avalon.thwn> <20170810231352.GA55461@FreeBSD> From: Mikhail Goriachev Cc: Edgar Pettijohn Message-ID: <3bf45be2-9053-7a1b-6564-dd25c6b0f1cf@webanoide.org> Date: Thu, 10 Aug 2017 20:45:49 -0400 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1 MIME-Version: 1.0 In-Reply-To: <20170810231352.GA55461@FreeBSD> Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Aug 2017 00:51:23 -0000 On 10/08/2017 19:13, Edgar Pettijohn wrote: > On Thu, Aug 10, 2017 at 09:29:12PM +0200, fml wrote: >> On Sun, Aug 06, 2017 at 10:22:13AM -0500, Edgar Pettijohn wrote: >>> Currently my mail server is working well enough. However, I would like to try setting up multiple sendmail processses with their own configurations. So I can have one running on port 25 with spam milters, no relays allowed, and deliver mail to dovecot lmtp. Then have a seperate process with its own config running on port 587 that requires tls+auth before it relays. >>> >>> Is this something people do regularly and is easy to implement? Or is it one of those things that after I begin I will wish I had never attempted. >>> >> >> If you do not need milter interfaces, OpenSMTPD is worth a try (it's >> in ports). >> It supports mail filters but, as far as I know, they aren't >> milter-compatible. >> Or just go with Postfix as you've been told to. >> I think that if today you stick with sendmail you: >> a) know why you *need* sendmail OR >> b) have some legacy software bound to sendmail OR >> c) just play "if it ain't broken, don't fix it" game (like me). > > I mainly just wanted to give it a shot. I will probably go back to > postfix. The configuration isn't all that difficult once you get the > hang of it. The main problem seems to be the documentation I have > found doesn't explain things fully and make references to "rule sets" > and macros that I don't understand yet, so then I have to go search for > those. Try to figure them out and how they apply to what I was reading > before, etc, etc. It seems looking at the source, that it hasn't been > updated well. Probably time to retire it or a complete rewrite. Hi Edgar, Once upon a time I read an article[1] which stated the following: "never to put SMTP incoming and outgoing in the same servers" That caught my attention. Since then I've been segregating services with jails. One jail as MTA and another as MSA. Definitely greater control in every aspect. Back to your question. I'm sure this is something others do regularly. Implementation maybe isn't that easy but you should attempt it. Cheers, Mikhail. [1] - http://www.pl.freebsd.org/doc/en_US.ISO8859-1/articles/casestudy-argentina.com/index.html -- Mikhail Goriachev Webanoide