Re: default MTA for sarge
Craig Sanders wrote:
>my point was that while the exim code may be currently secure, the design is
>inherently insecure. it's a late 80s/early 90s design....things have changed a
>lot since then, especially security requirements for MTAs on the 'net.
And we should all be using microkernels, and RISC is the way of the
future, and...
Exim's had two DSAs, Postfix has had one. We can argue about theoretical
security issues forever, but Postfix is not /obviously/ significantly
more secure. One of the hallmarks of Debian is that (within the realms
of Freeness) we've tended to be pragmatic about which package is used
based on how well the things /work/, rather than some fuzzy concept of
"Design superiority". Changing the default MTA is likely to lead to more
user confusion, in much the same way that changing the default shell to
zsh would.
--
Matthew Garrett | mjg59-chiark.mail.debian.devel@srcf.ucam.org
Reply to: