tech-security: Re: mail servers

Subject: Re: mail servers
To: None <Tech-Security@netbsd.org>
From: joe bsd <joebsd1@yahoo.com>
List: tech-security
Date: 03/03/2002 18:50:20
This was my first choice, also.  Compiling anything
on the 25 Mhz 68k mac takes a really long time.  And the  internal
linux server is a dual PII and has the home directories, so it seemed 
better to let the 68k's just pass and filter packets.

Can you elaborate on that proxy you wrote.  I don't know much about
that.

--Joe




--- Seth Kurtzberg <seth@cql.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> I have a very similar setup, except that my NetBSD boxes are Intel
> rather 
> than 68k.
> 
> I'm running my mail server internally on my Linux box.  Security wise,
> this 
> is really a toss up.  On the one hand, you are allowing connectivity
> through 
> the firewall to reach the mail server.  On the other hand, the mail
> server is 
> better protected.
> 
> I prefer the inside configuration, though, because I've written my own
> email 
> proxy that runs on the NetBSD box and there are things that I prefer to
> block 
> before the mail server ever sees them.
> 
> On Sunday 03 March 2002 17:51, you wrote:
> > Hello again,
> >
> > I have two NetBSD 68k macs acting as firewalls, routers, dns servers.
> > Behind them I put my home network.  I registered a domain name
> > and want to setup qmail. This mail server won't have many users.
> >
> > Behind the firewall I have a linux machine that acts as a samba, NIS
> and
> > home directory server on a private 192.168.1.xxx network.  I'm
> wondering
> > which would be the best place to put the mailserver.  Should I put it
> on
> > one of the firewall machines or should I put it behind the firewall on
> the
> > linux server?
> >
> > Which would be best for the security of the home network?
> > Are there any other issues to consider in making the choice?
> > Thanks for any help you can offer.
> >
> >    --Joe
> >
> > =====
> > ------------------------------------------------
> > When you buy a new Sun Server,
> >       you could be putting another American out of work.
> >
> > Ask me how.
> > ------------------------------------------------
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Yahoo! Sports - sign up for Fantasy Baseball
> > http://sports.yahoo.com
> 
> - -- 
> Seth Kurtzberg
> Machine Independent Software
> Office:  (480) 661-1849
> Fax: (480) 614-8909
> email:  seth@cql.com
> pager:  888-605-9296 or email 6059296@skytel.com
> 
> -----BEGIN PGP SIGNATURE-----
> Version: PGP 6.5.8
> 
> iQA/AwUBPILcHnhkmRgYZUCaEQL+rQCgl/Y5aErMy7c6jD82OR+4IeNhmq8AoIzN
> 3NtggF6JiOQxVkUTs3lzzcwa
> =j3N9
> -----END PGP SIGNATURE-----


=====
------------------------------------------------
When you buy a new Sun Server,
      you could be putting another American out of work.

Ask me how.
------------------------------------------------

__________________________________________________
Do You Yahoo!?
Yahoo! Sports - sign up for Fantasy Baseball
http://sports.yahoo.com