-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Saturday 2008-03-29 at 09:18 +1300, Volker Kuhlmann wrote:
Akin to today's topic of disabling network services when not needed, I'd like to suggest to also cripple the MTA when full functionality is not explicitly needed.
The local MTA should by default be listening on localhost:25 only, and not on everything:25.
I also think that the local MTA by default should only accept msgs for delivery which are addressed to anyone@localhost, and reject anything addressed to the rest of the world. I tried to persuade postfix on 10.2 to do this and found that it's only possible with a bad cludge. Postfix would accept anything (from localhost) and then not be able to deal with msgs it wasn't supposed to deliver (or soemthing like that). Most email clients work directly with the ISP's (or LAN's) relay host, so a fill-fledged local MTA is not needed. At least Debian has done default installs like this for some time now (with exim though).
I believe some mail clients expect a functional local mta. Pine, for instance. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFH7Z4ZtTMYHG2NR9URAr6vAJwMJdnJSOoQD0AbxusP6uEjXF8WFACfTmtE 9sbSam+pG807fprWp6iwFf8= =4fEO -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org