From owner-freebsd-security@FreeBSD.ORG Tue Jun 17 18:50:02 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1005837B401 for ; Tue, 17 Jun 2003 18:50:02 -0700 (PDT) Received: from Shenton.org (23.ebbed1.client.atlantech.net [209.190.235.35]) by mx1.FreeBSD.org (Postfix) with SMTP id EE3E443FBD for ; Tue, 17 Jun 2003 18:50:00 -0700 (PDT) (envelope-from chris@mail.hq.nasa.gov) Received: (qmail 12225 invoked by uid 1000); 18 Jun 2003 01:49:59 -0000 To: Vlad GALU References: <20030616105955.U11598@metafocus.net> <004601c334ed$d3381f70$0200a8c0@cp14275a> <20030617194111.1e79eb78.vladg@vipnet.ro> From: Chris Shenton Date: 17 Jun 2003 21:49:59 -0400 In-Reply-To: <20030617194111.1e79eb78.vladg@vipnet.ro> Message-ID: <878ys09mt4.fsf@PECTOPAH.shenton.org> Lines: 30 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-security@freebsd.org Subject: Re: POP daemon X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Jun 2003 01:50:02 -0000 Vlad GALU writes: > I can't complain about qmail-pop3d either. Does wonders, > but you have to use qmail though :) Agreed about qmail's pop3d. All of the qmail suite has a very good history of security. But you don't *have* to use qmail's smtpd and MTA, but you will have to use a Maildir mailbox format -- it's what pop3d reads. You can actually configure sendmail to deliver to Maildirs using the "maildrop" program and I understand recent "procmail" can do this too -- configure sendmail to use these instead of the regular local delivery agent. I prefer qmail but if you feel compelled to use sendmail, this is an option. Also, single-mailbox-file-per-user will *always* be slow for POP users who want to leave a bunch of mail on server. This kills qpopper, ancient or modern versions. Maildir's one-message-per-file makes this easy since it doesn't have to rewrite a big mailbox file all the time. Other MTAs like courier understand Maildir natively. And if you're looking for an IMAP server which is Maildir-aware, I like courier's imapd, available separately from the entire courier suite, if you want to combine qmail with courier-imapd. They're all in the ports, /usr/mail/*.