[EMAIL PROTECTED] wrote:
Ports aren't generally checked for much other than "Does it build?" and
"Does it work?".
So, secure by default means that you should only run OpenBSD as it comes
and do not touch anything on it. Or else, it won't be secure by default;
your warranty is voided and Theo will spank you.
OpenBSD would run postfix/cyrus fine depending on your mail volume.
Postfix/cyrus both include SSL functionality so, you can mandate secure
IMAP/POP and secure SMTP-AUTH. If you setup some sort of glue between SA
and postfix - (amavisd-new) comes to mind, which again would need a
plethora of perl dependancies, clamAV etc.
Now because you've gone beyond than just installing a mail server, it
can be hax0red the same way a Linux b0x can be hax0r3d ( Or something
along the same lines would follow this thread :)).
The biggest bottleneck are more related with io, default filesystem
etc.. but let's not get into that. People are already zealous enough in
this list :).
If you want to run tests, run the current stable version of OpenBSD
(3.7) and maybe a RHEL clone such as CentOS 4.0 on the same hardware.
Update both products on their patches (I'm sure you'll need to update
ports as well), run postal to deliver messages on both platforms, draw
pretty nice graphs and find out which platform would give you a better
bang for your buck.
PS - Did I mention, if you do anything more than what OpenBSD comes
installed with, it's not secure by default and again, Theo will spank
you, if you complain.
