Slashdot Mirror


Postfix: A Secure and Easy-to-Use MTA

BSD Forums writes "On March 3rd, 2003, Internet Security Systems, in cooperation with the Department of Homeland Security, issued a warning regarding a hole found in Sendmail. The warning, echoed by CERT, warned system admins that any version lower than 8.12.8 was vulnerable to a serious root exploit. Sendmail has a long history of security holes, most of which have been thoroughly documented on security sites. While Sendmail runs half the mail servers in the world, there are smaller and easier-to-use mail transfer agents (MTAs). Network administrator Glenn Graham demonstrates how Postfix gives you most of the power with a fraction of the pain."

4 of 374 comments (clear)

  1. Lucky I'm on windows by Mhumble · · Score: 5, Funny

    Phew lucky I'm running exchange and don't have these damn sendmail SECURITY fixes to worry about ;)

  2. Re:heh. by capt.Hij · · Score: 5, Funny

    the department of homeland security is issuing security advisories now?

    Do they do anything else?

  3. Re:heh. by clckwrkMalChick · · Score: 4, Funny

    yeap, and it's the same homeland security that after buying that issued this warning. I suppose I should be glad they're looking out, because you and I both know that the terrorists might come into the country next through the finger exploit.

    --

    -=-=-=-=-=--=-=-=-=-=-=-
    What would Yossarian do?
  4. Re:Milters? by dipipanone · · Score: 4, Funny

    No one will answer you....

    Probably because nobody can be bothered to respond to such an imbecilic remark. Sendmail and postfix are Mail Transport Agents, not Groupware. If you wanted to compare Exchange with a Linux equivalent, then there have been umpteen threads here in the past on the topic. This one, for example. Personally, I like this one but it isn't free. (At least not free as in beer. It's built on top of similar software to the free ones though.)

    But do go on comparing apples with oranges if you wish. It doesn't hurt anyone, and it gives many of us a sense of smug superiority.

    I can not complain about having to patch sendmail for the same

    I'm so sorry, but you seem to be reading an imaginary slashdot thread in your own head, as opposed to this one, which is about the security holes in Sendmail and how using Postfix may be a better approach because of what a pain it is to keep it updated?

    Perhaps you'd like to share your imaginary one with the rest of us and entertain us all some more?