Re: [opensuse] Virtual domain, between Postfix and Qmail

El vie, 29-06-2007 a las 19:01 +0200, Anders Johansson escribió:
On Friday 29 June 2007 19:00:39 Hudibras wrote:
Yes. I saw time ago a severe security fix for Postfix... qmail doesn't
have ANY ONE.

CAN-2005-1515

Then, he who did found the hole will be rewarded with the $1000 Dan
Bernstein offered if someone would exploit qmail!
I will find more discussion about this, even mailing to the same Dan
Bernstein or Bill Shupp or Dave Sill.
Even more, if this is true, can Sendmail or Postfix or any else be so
proud of having one only security hole?
It's seems to me unbelieveable that if another MTA have hundreds of
holes, it doesn't mind: "It's a human product"; but if, in any other
case, is referred to qmail, then qmail is not good.
Well.


Sendmail had some problems with
security some years ago. In the last years I they tightened their code a
lot. Though I do remember that Sendmail had a remote exploitable bug last
year.

Yes. Sendmail is already history...

Sendmail is used bz considerably more, and considerably larger installations
than qmail.

Yes. In 1929 considerably more people voted Hitler.

But let's stop the hearsay debate, OK?
No. It's not a debate. I think it's a very good thing to discuss things,
programs, servers here. I learn a lot!
I read many many mails here I'm not agree with, but I do look up
everyone, their taste, their opinions and their ideas. And why not if I
advice qmail to a mailing list friend? Is it that a deadly sin?
Why it's has to be anyone oppositing ideas and sometimes with not very
friendly words?

Cheers,
Alejandro.


--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

Relevant Pages

  • Qmail to Sendmail migration => life without qmail :-)
    ... This howto assumes that you have compiled and makeinstalled sendmail, ... Qmail is an MTA which uses specific form of database containing ... Now, user aliases are kept in domain directory, e.g. /MAIN/domainX.com/ ... Site-wide aliases and virtualusers are kept ...
    (comp.mail.sendmail)
  • Re: Newb questions
    ... I know BIND ... >> and sendmail are there but I keep hearing about potential security problems. ... to avoid qmail in favour of a postfix-based solution. ... It's also mostly unusable without different patches, ...
    (comp.unix.bsd.freebsd.misc)
  • Re: Email Server ammended..
    ... I have tried qmail, ... postfix as soon as i hit send on this email... ... Subject: Email Server ... > Zmailer, Smail3, Porcupine, Sendmail, Qmail, and Postfix I've done some ...
    (Security-Basics)
  • Re: linux box compromised: advice needed
    ... >>> stinkin' 0 from qmail does NOT prove it's any more secure. ... No. Sendmail has a long and glorious history of local and remote ... >> stapling new features onto it, ... >> that refuses to update their RedHat 4.2 print server for no reason I can ...
    (comp.os.linux.security)
  • Re: Newb questions
    ... I know BIND ... > and sendmail are there but I keep hearing about potential security problems. ... If you look at qmail you'll see that the ... Patches are required to compile it on just about any modern ...
    (comp.unix.bsd.freebsd.misc)