Zack Weinberg wrote:
All modern MTAs can be configured, quite easily, in a 'dumb client' mode where they accept mail only from the local host --
Well, "easily" is arguable if you aren't a Unix sysadmin, and depending on the MTA...
There are even programs, such as sSMTP
which, not a month ago had bugs causing overflow vulnerability. ;-)
and nullmailer, which have *only* this functionality.
Good Thing, and improving. However, be sure to add a procedure to your network monitoring setup to inform you of risky bugs in network related software. And this is where work starts to be caused by the assumption that e.g. a GCC shell script can send reports using the Mail program using an MTA possibly involving inetd, ...
-- Georg
