Re: Is OpenSMTPD worthy of OpenBSD inclusion?

2015/10/07 0:10 "Артур Истомин" : > > On Tue, Oct 06, 2015 at 02:20:31AM +0300, Kimmo Paasiala wrote: > > On Mon, Oct 5, 2015 at 10:52 PM, Артур Истомин wrote: > > > On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: > >

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

By now the thread starter should already be well aware that the correct thing would have been to ask for some comforting words the report from the third party code audit was and is going to result in further improvements. And then thank the developers for sharing the audit details, the work done

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On Tue, Oct 06, 2015 at 02:20:31AM +0300, Kimmo Paasiala wrote: > On Mon, Oct 5, 2015 at 10:52 PM, Артур Истомин wrote: > > On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: > >> The smtpd code is very good. > > > > static void > > filter_tx_io(struct io *io, int

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On 18:47 Mon 05 Oct , Jason A. Donenfeld wrote: > I maintain both distribution packages for it (Gentoo), as well as my > entire infrastructure, which is based on OpenSMTPD. I've "bet the > farm" on the project, so to speak. Oh, so you were that guy who released "stable" ebuild without Berkeley DB

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

You obviously never lived through the sendmail era. The smtpd code is very good. Bugs happen, and how the creators of a program react to them is what matters. The qualsys results were promptly dealt with. I don't think there is much to discuss other than diffs that further the project. STeve

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On Mon, Oct 05, 2015 at 06:47:18PM +0200, Jason A. Donenfeld wrote: > Hi folks, > Hi, I initially didn't intend to answer but I feel insulted by your comments and some facts need to be set straight. > It has been, therefore, to my extreme dismay to discover in recent > months the sheer number

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: > The smtpd code is very good. static void filter_tx_io(struct io *io, int evt) { struct filter_session *s = io->arg; size_t len, n; char*data; char

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

Jason A. Donenfeld wrote: > But I think it's time we take a step back and reassess the situation. > There are some critical questions that need to be answered. What > accounts for the high proportion of security vulnerabilities in a > project renowned for its brilliant developers and stringent

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On Mon, Oct 5, 2015 at 10:52 PM, Артур Истомин wrote: > On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: >> The smtpd code is very good. > > static void > filter_tx_io(struct io *io, int evt) > { > struct filter_session *s = io->arg; > size_t

Is OpenSMTPD worthy of OpenBSD inclusion?

Hi folks, Like many others, when I learned that OpenBSD was creating from scratch an SMTP daemon, I was thrilled. The OpenBSD name has for a long time been connected with security, stability, and reliability. I was excited to see an extremely easy to configure yet powerful SMTP daemon coming from