* Marc Wilson (mwilson@moonkingdom.net) [011013 19:40]: > How do you read your own e-mail? Do you pop it from somewhere to the > local box, or do you use fetchmail or maildrop or one of their relatives > to dump it into the local mail spool? > > Fetchmail and etc need a local MTA running because that's how they put > mail into the spool. There's one reason. > > Another reason is that the mail system is usually how cron processes > communicate with their owners. Since they run asynchronously, without a > console, that's about the only way to get messages that might need a > response back to someone who can deal with them. A log file is a poor > substitute for this... you have to remember to go look at it. ^_^ > > As for connecting to it from outside... that's harmless enough. What > does it matter? It's meant to be connected to from outside, so it's > secure enough. Well, generally, every daemon that has been victim to a remote explot was meant to be connected to from outside. That DOES NOT mean it's secure, by any definition. It might imply that it was meant to be secure, but there's no guarantee that it is at all secure. The OP was right: he should disable it if he doesn't need it. There have been many discussions about what is the Right Way to install and configure daemons in Debian (i.e. should they be automatically run after installing). Search the archives. Also, if you don't need exim, you should be able to do without. Check out nullmailer, ssmtp, masqmail. good times, -- Vineet http://www.anti-dmca.org Unauthorized use of this .sig may constitute violation of US law. echo Qba\'g gernq ba zr\! |tr 'a-zA-Z' 'n-za-mN-ZA-M'
Attachment:
pgpiuECkfVT5M.pgp
Description: PGP signature