Re: Postfix as default MTA?

To: Steve Lamb <morpheus@rpglink.com>
Subject: Re: Postfix as default MTA?
From: Thomas Quinot <thomas@debian.org>
Date: Mon, 28 Jun 1999 12:11:42 +0200
Message-id: <[🔎] 19990628121142.A10710@melusine.cuivre.fr.eu.org>
Reply-to: Thomas Quinot <thomas@debian.org>
In-reply-to: <[🔎] E10yXpK-0002a6-00@rpglink.com>; from Steve Lamb on Mon, Jun 28, 1999 at 02:36:38AM -0700
References: <[🔎] 19990628113022.A10542@melusine.cuivre.fr.eu.org> <[🔎] E10yXpK-0002a6-00@rpglink.com>

Le 1999-06-28, Steve Lamb écrivait :

> Personally I see nothing about Postfix which makes it more secure than Exim
> in any regard.

The reasons why I see Postfix as more secure than Exim are the following:
  - Postfix was designed with security in mind from the beginning;
    although Exim was much improved in this respect, security
    was not a major concern at the beginning of its development.
    Philip Hazel, author of Exim, explains this point at
      http://www.deja.com/[ST_rn=ps]/getdoc.xp?AN=432082346.

  - In the security model of Postfix, no program has ever to
    trust the input it gets from another. Postfix divides
    the MTA's functionality into several binaries, only one
    of which has to run as root in order to be able to
    bind to the SMTP port. No Postfix binary is set-uid root.

I am also quite reassured by Wietse Venema's long and recognised
experience in writing UNIX security software.

Thomas.

-- 
    Thomas.Quinot@Cuivre.FR.EU.ORG   <URL:http://web.fdn.fr/~tquinot/>

Reply to:

References:
- Postfix as default MTA?
  - From: Thomas Quinot <thomas@debian.org>
- Re: Postfix as default MTA?
  - From: "Steve Lamb" <morpheus@rpglink.com>

Prev by Date: Re: YADA Build-Depends support
Next by Date: Re: Is it worth reporting a bug just for that ?
Previous by thread: Re: Postfix as default MTA?
Next by thread: Re: Postfix as default MTA?
Index(es):
- Date
- Thread