DaemonForums  

Go Back   DaemonForums > Miscellaneous > General software and network

General software and network General OS-independent software and network questions, X11, MTA, routing, etc.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 10th June 2008
aleunix aleunix is offline
Real Name: Alessandro
Spam Deminer
 
Join Date: May 2008
Location: Italy
Posts: 224
Thanked 3 Times in 3 Posts
Default Discussion on MTA : SendMail, Postfix, Exim, Qmail

Discussion on MTA : SendMail, Postfix, Exim, Qmail

MTA Comparison

For historical reasons the most popular continues to be sendmail but since there are safer alternatives do not think that would be the case that some distro courageous thought to their use by default?

Especially for distro think for security as openbsd.

Which you prefer between postfix and exim?

Qmail.
I think that still has the drawback of do not be a truly open.
Reply With Quote
  #2   (View Single Post)  
Old 10th June 2008
stukov's Avatar
stukov stukov is offline
Real Name: Jean-Michel Philippon-Nadeau
Package Pilot
 
Join Date: May 2008
Location: Sherbrooke, Qc, Canada
Posts: 167
Thanked 6 Times in 6 Posts
Default

I personally prefer Postfix. However, I believe that people that love to administer Exim mail servers will have as good mail servers as people that love to administer Postfix setups. But yeah, I prefer from far Postfix to Exim. I just love how it is structured and well built.
__________________
"Any intelligent fool can make things bigger, more complex, and more violent. It takes a touch of genius -- and a lot of courage -- to move in the opposite direction."
Reply With Quote
  #3   (View Single Post)  
Old 10th June 2008
TerryP's Avatar
TerryP TerryP is offline
Arp Constable
 
Join Date: May 2008
Location: USofA
Posts: 1,547
Thanked 112 Times in 104 Posts
Default

Quote:
Originally Posted by FAQ1.11
# Why is Sendmail included, it is "known insecure"?!
Sendmail has had an imperfect security record, however the Sendmail authors and maintainers have been very receptive to reworking their code to make it much more secure (and this is a sadly uncommon response). The recent security history of Sendmail is not much different than some of the supposedly "more secure" alternatives.
# Why isn't Postfix included?
The license is not free, and thus can not be considered.
# Why isn't qmail or djbdns included?
Neither program is what many Unix users "expect" out of a mail or DNS application.
Good enough for me although I probably would use postfix or qmail if I had to spend a lot of time with such a program.
__________________
My Journal

Thou shalt check the array bounds of all strings (indeed, all arrays), for surely where thou typest ``foo'' someone someday shall type ``supercalifragilisticexpialidocious''.
Reply With Quote
  #4   (View Single Post)  
Old 13th November 2008
Crypt Crypt is offline
Port Guard
 
Join Date: Aug 2008
Location: Ajax, Ontario
Posts: 32
Thanked 0 Times in 0 Posts
Default

I use qmail actually, and never had any issues with running it or setting it up...We have been using it for about 3 years for our in-house email server.
Reply With Quote
  #5   (View Single Post)  
Old 13th November 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 808
Thanked 36 Times in 32 Posts
Default

How about OpenSMTPd

http://undeadly.org/cgi?action=artic...20081112084647
Reply With Quote
  #6   (View Single Post)  
Old 13th November 2008
BSDfan666 BSDfan666 is offline
Real Name: N/A, this is the interweb.
Helpful companion
 
Join Date: Apr 2008
Location: Ontario, Canada
Posts: 2,223
Thanked 193 Times in 184 Posts
Default

Quote:
Originally Posted by Oko View Post
It doesn't have that name quite yet..

Also, it's still early in the developmental phase.

But.. I can't wait until it replaces sendmail.. m4 is just horrid for configuration files.

OpenSMTPD* will have pf-style syntax..
Reply With Quote
  #7   (View Single Post)  
Old 17th November 2008
schrodinger's Avatar
schrodinger schrodinger is offline
Fdisk Soldier
 
Join Date: May 2008
Location: Ireland
Posts: 69
Thanked 2 Times in 2 Posts
Default

Quote:
Originally Posted by Oko View Post
While this looks like a great contender heed the warnings!

"don't use it live unless you want to help test and spot bugs"
__________________
It was a new day yesterday, but it's an old day now.
Reply With Quote
  #8   (View Single Post)  
Old 18th November 2008
JMJ_coder JMJ_coder is offline
VPN Cryptographer
 
Join Date: May 2008
Posts: 464
Thanked 8 Times in 8 Posts
Default

Query: If your email provider has an smtp server (i.e., smtp.myemail.com), do you still need an MTA (i.e., sendmail) to send email if you use a basic MUA like mutt? Would you need one (i.e., fetchmail) to get mail if you have a pop server?
__________________
And the WORD was made flesh, and dwelt among us. (John 1:14)
Reply With Quote
  #9   (View Single Post)  
Old 18th November 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 808
Thanked 36 Times in 32 Posts
Default

Quote:
Originally Posted by JMJ_coder View Post
Query: If your email provider has an smtp server (i.e., smtp.myemail.com), do you still need an MTA (i.e., sendmail) to send email if you use a basic MUA like mutt? Would you need one (i.e., fetchmail) to get mail if you have a pop server?
The newest Mutt has built in SMTP so you do not need sandmail. The stable one doesn't have so you will need to configure sendmail to send mail to your IP mail server which will relay it further. I am not using Mutt so I do not know if it has built in support for downloading mails from POP3 and IMAP servers. If I have to guess I think it has it. If it doesn't have you will have to use fetchmail to get your mail from the remote mail server of your IP. You do want to use IMAP and SMTP only with TSL or SSL.

I would not use POP3 period.

Cheers,
OKO
Reply With Quote
Old 18th November 2008
JMJ_coder JMJ_coder is offline
VPN Cryptographer
 
Join Date: May 2008
Posts: 464
Thanked 8 Times in 8 Posts
Default

Quote:
Originally Posted by Oko View Post
The newest Mutt has built in SMTP so you do not need sandmail. The stable one doesn't have so you will need to configure sendmail to send mail to your IP mail server which will relay it further. I am not using Mutt so I do not know if it has built in support for downloading mails from POP3 and IMAP servers. If I have to guess I think it has it. If it doesn't have you will have to use fetchmail to get your mail from the remote mail server of your IP. You do want to use IMAP and SMTP only with TSL or SSL.

I would not use POP3 period.

Cheers,
OKO
Thanks, that answered my question.


Why wouldn't you use POP3?
__________________
And the WORD was made flesh, and dwelt among us. (John 1:14)
Reply With Quote
Old 18th November 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 808
Thanked 36 Times in 32 Posts
Default

Quote:
Originally Posted by JMJ_coder View Post


Why wouldn't you use POP3?
Plain text over telnet. Be my guest and you tell me why
Reply With Quote
Old 18th November 2008
JMJ_coder JMJ_coder is offline
VPN Cryptographer
 
Join Date: May 2008
Posts: 464
Thanked 8 Times in 8 Posts
Default

Quote:
Originally Posted by Oko View Post
Plain text over telnet. Be my guest and you tell me why
Ah, that could be a security risk! I did not know that. I just went with the flow and used the ever popular pop3 - don't even know if any of my email accounts support IMAP (but, I will check with my web hosting company, since that account is where I'm trying to get all my various email accounts consolidated into).
__________________
And the WORD was made flesh, and dwelt among us. (John 1:14)
Reply With Quote
Old 18th November 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 808
Thanked 36 Times in 32 Posts
Default

Quote:
Originally Posted by JMJ_coder View Post
Ah, that could be a security risk! I did not know that. I just went with the flow and used the ever popular pop3 - don't even know if any of my email accounts support IMAP (but, I will check with my web hosting company, since that account is where I'm trying to get all my various email accounts consolidated into).
Make sure their IMAP and SMTP use TLS or at least SSL.
Reply With Quote
Old 18th November 2008
phoenix's Avatar
phoenix phoenix is offline
Risen from the ashes
 
Join Date: May 2008
Posts: 699
Thanked 90 Times in 81 Posts
Default

I've never really understood the purpose of using IMAP/POP over SSL/TLS. For authentication, sure, but for the actual data transfer? What's the point? The messages travelled over plaintext SMTP between how many different SMTP servers, routers, and other networking gear? And are stored in plaintext on how many systems? And are stored on the ISP/destination server in plaintext for how long? Why encrypt the last connection only?
__________________
Freddie

Help for FreeBSD: Handbook, FAQ, man pages, mailing lists.
Reply With Quote
Old 18th November 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 808
Thanked 36 Times in 32 Posts
Default

Quote:
Originally Posted by phoenix View Post
I've never really understood the purpose of using IMAP/POP over SSL/TLS. For authentication, sure, but for the actual data transfer? What's the point? The messages travelled over plaintext SMTP between how many different SMTP servers, routers, and other networking gear? And are stored in plaintext on how many systems? And are stored on the ISP/destination server in plaintext for how long? Why encrypt the last connection only?
Why do you want to send message in the plain text? How about signed and encrypted message
Reply With Quote
Old 18th November 2008
phoenix's Avatar
phoenix phoenix is offline
Risen from the ashes
 
Join Date: May 2008
Posts: 699
Thanked 90 Times in 81 Posts
Default

Exactly. So, if your message is signed and encrypted, why would you need POP-over-SSL or IMAP-over-SSL?

POPS (POP3S?) and IMAPS never made sense to me, as a message-transfer protocol. Unless the entire communications channel, from end-point to end-point, is encrypted, then there is very little value in encrypting the final leg of a message's journey.

On groupware systems where messages tend to remain within the system (internal messages), then secure server-client connections like IMAPS make sense. But for general "sending over the Internet" setups? Not really. At least not in my mind.

That's like driving a tank from home to work, then jumping on a 10-speed bike to travel from work to the mall, then jumping on a bus to travel from the mall to the grocery store, then hitch-hiking from the grocery store back to work, then jumping back in the tank to drive home. Sure, the home-to-work leg of the trip is super-secure, but what about the rest of the journey??
__________________
Freddie

Help for FreeBSD: Handbook, FAQ, man pages, mailing lists.
Reply With Quote
Old 18th November 2008
BSDfan666 BSDfan666 is offline
Real Name: N/A, this is the interweb.
Helpful companion
 
Join Date: Apr 2008
Location: Ontario, Canada
Posts: 2,223
Thanked 193 Times in 184 Posts
Default

People live in blissful ignorance, they assume that if they encrypt the communication... everyone else will.
Reply With Quote
Old 19th November 2008
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Old man from scene 24
 
Join Date: Apr 2008
Location: Eindhoven, Netherlands
Posts: 2,080
Thanked 198 Times in 156 Posts
Default

There is some use in pop3s and imaps.

For example, if you want to eavesdrop on me, then the easiest way to do so is to listen on the pop3/imap/smtp traffic from my computer to the main server/MTA.
If pop3s/imaps/smtps are used, this will be much harder.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote
Old 20th November 2008
JMJ_coder JMJ_coder is offline
VPN Cryptographer
 
Join Date: May 2008
Posts: 464
Thanked 8 Times in 8 Posts
Default

Quote:
Originally Posted by Carpetsmoker View Post
There is some use in pop3s and imaps.

For example, if you want to eavesdrop on me, then the easiest way to do so is to listen on the pop3/imap/smtp traffic from my computer to the main server/MTA.
If pop3s/imaps/smtps are used, this will be much harder.
It seems that most consumer email systems (at least the ones I've dealt with) only use POP3 (and some IMAP) - unless they are using pop3s/imaps and just not saying so in their documentation.
__________________
And the WORD was made flesh, and dwelt among us. (John 1:14)
Reply With Quote
Old 21st November 2008
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Old man from scene 24
 
Join Date: Apr 2008
Location: Eindhoven, Netherlands
Posts: 2,080
Thanked 198 Times in 156 Posts
Default

Yes, most only support smtp and pop3, only the better ones support imap, and few support the secure version.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Qmail and setting IP of the sender... DNAeon FreeBSD Ports and Packages 5 6th November 2008 08:54 PM
Sendmail Timmy66 OpenBSD General 11 19th October 2008 03:01 PM
qmail scanner problem t4y4n FreeBSD General 1 5th August 2008 07:36 PM
sendmail vs qmail vs postfix vs exim graudeejs General software and network 6 22nd July 2008 03:25 PM
Sendmail, issues... pcfxer FreeBSD General 2 8th May 2008 10:07 AM


All times are GMT. The time now is 05:24 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick