At 12:58 AM +1300 12/31/00, Alan Brown wrote:
> On Sat, 30 Dec 2000, Kenneth Porter wrote:
>
>> The DRAC home page is http://mail.cc.umanitoba.ca/drac/. If you're
>> using Red Hat, RPM's are available for DRAC (package name dracd) and a
>> qpopper compiled to use it. (I'm the packager, and I use my packages on
>> my office mail system. Works great for roaming users.)
>
> Would you mind posting a pro/con vs SMTP AUTH?
>
> To my mind, DRAC and other pop-before-smtp solutions are kludges at
> best due to their being out-of-band solutions. I'd like to see some
> intelligent discussion on which is the better long-term solution
>
> This shouldn't stop people using both solutions simultaneously, of course.
>
> AB
In my personal opinion, drac is a convenient interim solution until
support for SMTP AUTH is ubiquitous. SMTP AUTH is standards-based,
does not depend on IP addresses, does not require that the user check
mail before being able to send mail, and permits positive tracking of
message origination (in case the message turns out to be spam, for
example).
Combining SMTP AUTH with the Message Submission port further
separates all SMTP traffic into two classes: initial submission by
authorized users, and inbound mail. This permits easier security
setups and verification, and makes it easier to have a blanket
prohibition on relaying using port 25, and a blanket requirement for
SMTP AUTH on the message submission port.
