Les Mikesell wrote: > > The way to get security is to make the system consistent and easily > understandable. If users need to hand-edit complex config files for > common operations you haven't accomplished that. How, for example, > would you advise a user to check for whether sendmail was active on the > network or not, and how to change it? Why should this differ from what > you'd say about dovecot? If every program is a special case, few people > are going to understand the system well enough to keep it secure. > So you are saying that configuring Sendmail is too complicated for the average user. A good reason not to use Sendmail as the default mail program. Postfix might be a better choice. Configuring it is more like configuring most other services. Configuring Sendmail is more like programming then configuring a service. Changing this wold requiring rewriting Sendmail. Mikkel -- Do not meddle in the affairs of dragons, for thou art crunchy and taste good with Ketchup!
