From owner-freebsd-security  Tue Feb 13 15: 4: 8 2001
Delivered-To: freebsd-security@freebsd.org
Received: from homer.softweyr.com (mail.dobox.com [208.187.122.44])
	by hub.freebsd.org (Postfix) with ESMTP id CEF0437B65D
	for <freebsd-security@freebsd.org>; Tue, 13 Feb 2001 15:04:01 -0800 (PST)
Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!)
	by homer.softweyr.com with esmtp (Exim 3.16 #1)
	id 14Sjlk-0000BQ-00; Tue, 13 Feb 2001 11:01:40 -0700
Message-ID: <3A897683.FCB8E651@softweyr.com>
Date: Tue, 13 Feb 2001 11:01:40 -0700
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: Len Conrad <LConrad@Go2France.com>
Cc: freebsd-security@freebsd.org
Subject: Re: Secure Servers (SMTP, POP3, FTP)
References: <Pine.BSF.4.32.0102121531370.19350-100000@earth.wnm.net>
	 <3A885F40.9C6AD285@acm.org> <5.0.0.25.0.20010213090218.04eaa7a0@mail.Go2France.com>
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Len Conrad wrote:
> 
> > > > 3. Postfix - Secure, quite light on system resources, growing support
> >
> >Completely opaque configuration, no useful documentation.  I still
> >wonder exactly how this program has such a great reputation, given what
> >an obstinate bitch it is to make it do something useful.
> 
> ??? I chose postfix for my IMGate project (FreeBSD mail hub in front
> of Ipswitch Imail for NT) because it was so easy to configure (vs
> qmail and sendmail), and based on the success of bunches of NT GUI
> jockeys (basically zilch *nix backgnd) who have gotten postfix
> working with little or no help, I chose right and your opinion is
> 180° out from my experience.

With a bit of help from Chris Watson, I've found that the problem that
has been driving me crazy is the confluence of two conflicting
configuration settings and neither postfix itself nor postconf reporting
that they conflict.  I haven't yet found anything in the documentation
that mentions specifically that they conflict either, perhaps I'm the
first person on the entire planet who actually tried both at the same
time.  

I'll submit a bug report at least, postconf really should report them as 
a conflict.

And, for anyone else who wants to try this at home, comment out the 
virtual_maps setting unless you actually have entries in the virtual
file, and specify either mail_spool_directory OR home_mailbox, lest
ye not be able to find your mail (with both hands).

As for my comments about the documentation:

	bash-2.04# pwd
	/usr/local/share/doc/postfix
	bash-2.04# !gr
	grep -i mail_spool_directory *
	bash-2.04#

Yeah, I'll count that as "opaque".

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message