Subject: Re: bin/30040: some MTA stuff
To: None <gnats-bugs@NetBSD.org>
From: Manuel Bouyer <bouyer@antioche.lip6.fr>
List: netbsd-bugs
Date: 04/25/2005 20:47:41
On Sat, Apr 23, 2005 at 05:12:01PM +0000, Sascha Retzki wrote:
>  > Why ? This way the user has the ability to chose which one to use.
>  
>  pkgsrc. Or system packages, which we discussed already some times ago, which
>  I don't want to bring here.

Yes, the right way to fix this is is system packages. But we don't have system
packages yes.

>  
>  > Although which MTA to ship, and which one to use by default is
>  > controversial, I don't see any fundamental problems with having several
>  > MTAs shipped with the system.
>  > 
>  
>  $ dict bloat 

No more than a lot of other stuffs in the base system and which are not
commonly used.

>  
>  > >  - Don't use idiotic, wrong or insecure default configurations
>  > 
>  > How is the default sendmail idiotic, wrong or insecure ? The default
>  
>  Insecure: Both can't be shiped with cryptographic support.

MTA don't rely on cryto for their security in most config. In fact, none
of my SMTP clients or servers use crypto. You can say they miss a feature
for your usage, you can't say they are insecure.

>  Wrong/Idiotic: virecover, whatever it is really about, is enabled by default, 
>  the user has no chance to disable it or configure sendmail correctly. Ctrl+C 
>  it, then find out that it is called virecover (yay intuitive..) and then 
>  explicitly set it to =no. What a mess. I certainly think this unix is about:
>  "Perfect is attained not if there is nothing more to add, but if there is 
>  nothing more to remove".

There is something broken in your setup, and I don't think sendmail is to
blame here. I've never seen virecover hang with an out of the box install.

-- 
Manuel Bouyer <bouyer@antioche.eu.org>
     NetBSD: 26 ans d'experience feront toujours la difference
--