Les Mikesell wrote: > Mikkel L. Ellertson wrote: > >> It should work fine for people that use fetchmail to download their >> mail from their ISP. Then again, most ISP's are already blocking >> incoming port 25 connections to non-commercial accounts, and may >> require you to request opening up incoming port 25 connections on >> commercial accounts. > > So you don't think RH and fedora are suitable distributions for people > with commercial accounts? I can understand that for fedora, but all RH > based distros are broken the same way. > Not what I said at all. But no configuration is going to be "right" for people with commercial accounts. >> It has been a long time sense I >> has able to use a stock Sendmail, or Postfix configuration file >> regardless of the distribution. > > That's my point... Why not ship something that works? > Works for who? There is no "one size fits all" configuration. The configuration I use is not going to work for you. How may people would your configuration work for? Regardless of the configuration shipped, most people with a commercial Internet connection are still going to have to modify the configuration. Chances are, people with a small network are also going to have to change it. The stock configuration will work for stand-alone machines, and is fairly safe to run on a network machine. To fully integrate the mail server into the network, you are going to have to do some network specific modifications in just about every case. The days when a mail server could send mail to any other mail server without specific configuration are gone. If you are a non-commercial user, chances are you have to relay though your ISP's mail server. You may have to do the same with a small commercial network. With just about any network, you have to set up who can send mail through the server. You may also need to change how your mail server announces itself over the Internet. You may also need to route all outgoing mail through one server, and you may need to route internal mail to another server. What about the people that have their primary mail server at their hosting service? Are they relaying their outgoing mail through the same server? If so, you have to change the configuration to use that host as a relay. If you are not relaying through the hosting server, do you have to relay through your ISP's mail server? Or does the server have to masquerade as another host when sending mail over the Internet? At one time or another, I have configured Sendmail and/or Postfix to handle all of these setups. I have tweaked the sendmail.cf files, as well as used M4 to create new ones. I also tent to tweek the config files of other services to work the way I expect. I am in favor of shipping servers with configurations that are as secure as possible, and the services turned off by default. Most systems need a mail server running, so having it only accept mail from the local machine in the next best thing to not running it. > If the other services didn't work as distributed you probably > wouldn't run them either. > All I can say is do a Google search on me. Some of the hits with the ExecPC email address show how much things have changed over the years. Mikkel -- Do not meddle in the affairs of dragons, for thou art crunchy and taste good with Ketchup!