Re: MTA choice

2010-08-13 Thread j...@fixedpointgroup.com 

Henning Brauer wrote:

* Peter Miller  [2010-08-13 10:46]:
   

I only want to know what is better (easiest way, most secure) to use.
And have your advice.
   

He just gave it to you. sendmail.
 

I would never use sendmail for anything halfway serious.

   



++

sendmail is fine if you have a few users at a relatively quiet domain, 
all of whom you want to have system accounts on the mailserver. smtpd 
does similarly but has unpredictable behavior at best. i spent many 
hours fiddling with smtpd until i gave up on it.


postfix is great because of the virtual user support, meaning that your 
mail users do not require system accounts, and configurability. hosting 
several domains, all with separate mailboxes e.g. u...@domain1.com and 
u...@domain2.com is done pretty easily by postfix. in the instance that 
you need support from the postfix-users mailing list don your 
douchebag-proof-suit and you should be ok so long as you don't subscribe 
to that list.


i have heard good things about qmail but never used it myself.

FYI - this is a very old and contentious question - 'which mta is best?'

Re: OpenBSD *lusers*

2010-07-19 Thread j...@fixedpointgroup.com 
since when is this mailing list a fucking twitter feed? from under what 
rock on the planet stupid did this thread crawl?

isakmpd falling over: alternatives?

2010-05-25 Thread j...@fixedpointgroup.com 
over the past several years i have encountered a variety of problems 
with isakmpd that range from difficult to translate error messages to 
tunnels dropping without explanation.


i have just recently had a rash of tunnel dropping, which can frequently 
be fixed by one endpoint doing


pkill -x isakmpd
isakmpd -Kv
ipsecctl -f /etc/ipsec.conf

in this most recent case doing this at both ends of the tunnel 
repeatedly does not fix the problem. i am sick of trying to work with 
isakmpd so i am interested in finding an alternative.


the possibility of doing an ssh-based vpn seems appealing but i am not 
sure it will perform in the same capacity or have its own problems.  i 
would appreciate input on this topic.


cheers,
jake