> Anyway, while on this thread it has occurred to me to ask
> why put qmail in either inetd or tcpserver? Why not run
> it as a daemon?
1) If it ran as its own daemon, it would require root privileges to
bind to port 25. When it is spawned by tcpserver, the amount of code
requiring root privileges is smaller, and therefore less of a security risk.
This is a security feature.
2) One could argue that daemons require much more care for cleaning
up memory use and buffer use, so that a) information isn't leaked between
two users and b) memory leaks don't impact the system. Note that the Apache
daemons are discarded over time to avoid these dangers. By spawning one
process per message, this is not an issue.
(One might argue that djb's code is small and tight enough to trust.
One might also argue that good design is still good design even if you trust
the coder).
--
gowen -- Greg Owen -- [EMAIL PROTECTED]
