Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On 8/26/20 7:07 PM, Ashley Dixon wrote: I meant (a), in the sense that you should probably write it up in a more presentable fashion than a GitHub README page. You might want to nicely typeset it in TeX or something to make it seem more serious. Just a suggestion... I'm sure there are those that will disagree with me. But I don't think it's as important how professional things look as long as they are sound ideas. Lest it be an ad hominem attack. Which, as previously indicated is not a good thing. Good ideas should be able to stand on their own. If Caveman's idea turns out to be deemed better on it's technical merits, then the text vs HTML vs TeX/LaTeX formatting shouldn't matter. In which language are you intending to write the reference implementation? I'd suggest writing it in a relatively low-level language, so it's easier to read and port without making too many assumptions. I would probably argue that using a mid to higher level language or even a pseudo code for documentation / explanation might be advisable. I think that it's more important to get the idea out, in a way that it's easily understandable and re-implementable by others. Is it better to have the first implementation be crem de la crem and the overall idea not be adopted? Or would it be better for the original implementation to fade into history while the concept takes over and surpasses current email solutions? You really need to define more goals and non-goals; two non-specific goals, and one non-goal really isn't enough to form an entire specification. I would suggest starting with a problem statement. Clearly document and articulate what you think is wrong with the current email solutions. After all, I believe that's the root of the motivation for this. Once you have a clear problem statement, start developing possible solutions. I encourage multiple -> many if not an order of magnitude more than the problems. Once you have multiple possibilities, then you can objectively compare and contrast the possibilities to see which one is the best. Additionally, I noticed that you have written that the "actual message" will be restricted to UTF-8 with no HTML/JS/CSS, which you collectively describe as "self-hating formats" (?). While I (and most on this list) despise the use of the aforementioned formats in e-mails to the appropriate extent, I struggle to see how you are going to prevent them being transmitted using HillaryMail. If there is anything that the industry is good at, it's encoding things such that they can be transported by something that can't natively support the unencoded thing. All of the control codes of HTML are fully representable in ASCII, which is a strict subset of Unicode. How are you going to prevent people transmitting HTML over the protocol? It is up to the client to parse the HTML into its intended aesthetic form; the server has nothing to do with it. The only solution I could imagine is rejecting all messages containing attachments with MIME types other than plain-utf8, but is that really a good idea? I think trying to restrict things will do more harm to the idea than the idea itself would do good. It's likely to cause people to reject it out of hand as why would they want to choose something that fights them? I am interested, but gravely skeptical. Well said. I am not overtly opposed to the concept of replacing SMTP and enhancing email. I just want to make sure that whatever eventually does replace SMTP does so because it can stand up to technical scrutiny far worse than anything I can throw at it. It should succeed because it really is better, not because someone wants it to be better. Historians will judge us and the decisions we make harshly, just like we judge our previous technical brethren harshly for their decisions. -- Grant. . . . unix || die
Re: [gentoo-user] tips on running a mail server in a cheap vps provider run but not-so-trusty admins?
On 8/18/20 6:44 PM, Grant Taylor wrote: I will have to collect a list and get back to you. Here are part of some crude notes that I created for myself to use to build a Gentoo mail server about three years ago. This is the email specific parts. The rest were for other non-email aspects. Note: This just gets things installed. It doesn't do anything for how to configure things. (I was copying config files between systems.) The square brackets at the end of the line are dependencies. (I use the word loosely.) - eMail - Sendmail (mail-mta/sendmail) [ipv6 sasl ssl] - emerge -a mail-mta/sendmail - chmod g+w /var/spool/mqueue - rc-update add sendmail default - {mc,cf} file - certificates - cp /etc/pam.d/{pop,smtp} - touch /etc/mail/access - makemap hash /etc/mail/access < /etc/mail/access - touch /etc/mail/genericstable - makemap hash /etc/mail/genericstable < /etc/mail/genericstable - Cyrus-SASL (pulled in) - rc-update add saslauthd default - Nail (mail-client/nail) [] - emerge -a mail-client/nail - Procmail (mail-filter/procmail) [] - emerge -a mail-filter/procmail - Mutt (mail-client/mutt) [] - emerge -a mail-client/mutt - SpamAssassin (mail-filter/spamassassin) [cron ipv6 ssl] - emerge -a mail-filter/spamassassin - rc-update add spamd default - sa-update - SpamAssassin Milter (mail-filter/spamass-milter) [] - emerge -a mail-filter/spamass-milter - rc-update add spamass-milter default - ClamAV (app-antivirus/clamav) [ipv6 milter] - emerge -a app-antivirus/clamav - rc-update add clamd default - /etc/conf.d/clamd - START_MILTER=yes - SPF (mail-filter/libspf2) [] - emerge -a mail-filter/libspf2 - SRS (mail-filter/libsrs2) [] - emerge -a mail-filter/libsrs2 - OpenDKIM (mail-filter/opendkim) [ssl] - echo "mail-filter/opendkim ldap" > /etc/portage/package.use/opendkim - emerge -a mail-filter/opendkim - rc-update add XXX default - OpenDMARC (mail-filter/opendmarc) [] - emerge -a mail-filter/opendmarc - rc-update add XXX default - CourierIMAP (net-mail/courier-imap) [ipv6] - emerge -a net-mail/courier-imap - /etc/courier/conf files - mkimapcert - mkdhparams - rc-update add courier-imapd-ssl default - Install valid SSL cert. -- Grant. . . . unix || die
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On Wed, Aug 26, 2020 at 08:33:58PM +, Caveman Al Toraboran wrote: > On Wednesday, August 26, 2020 9:57 PM, Ashley Dixon > wrote: > > > Why the name "HillaryMail", and why does the logo contain a picture of > > Margaret Thatcher? ;-) > > very true (re: thatcher). now i cannot unsee the > thatcher in the pixel art. i have 2 options: > > (1) rename protocol into thatchermail. > (2) find another pixel art that's actually for > hillary. Nothing wrong with Thatcher. Although, British politics are less amusing than their American counterparts, but there are exceptions. https://www.youtube.com/watch?v=HDVwidaHwSc More seriously, as Grant said, it's probably best to stray away from this politically charged area entirely. Mentioning leaked e-mails of an American presidential candidate in the title of an e-mail solution is akin to naming an SSL implementation something like Heartbleedin'. It just gives off the completely wrong "vibe". > i got the thatcher pixel art from a site that > claimed it's hillary [1]. > > as for the name "hillarymail", nothing against > her. it's just that i heard so much about > hillary's mails up to a point all mails started to > feel as if they belong to her. Yes, but (I assume) there were not many positive reports. It does seem an odd thing after which to name an e-mail solution! > i intend to eventually write a reference > implementation either way (hopefully). specially > that this seems to me very easy to implement, yet > it seems also powerful. > > not sure what "formal r.f.c." means. > > (a) if it means a less ambiguous description, > then "yes, but at a natural pace based on > demand" (in the spirit of occam's razor). I meant (a), in the sense that you should probably write it up in a more presentable fashion than a GitHub README page. You might want to nicely typeset it in TeX or something to make it seem more serious. Just a suggestion... In which language are you intending to write the reference implementation? I'd suggest writing it in a relatively low-level language, so it's easier to read and port without making too many assumptions. > but if it is possible to make it easier while > still satisfying the constraints > (goals/non-goals), then that's a good step forward > (perhaps draft one?). You really need to define more goals and non-goals; two non-specific goals, and one non-goal really isn't enough to form an entire specification. Additionally, I noticed that you have written that the "actual message" will be restricted to UTF-8 with no HTML/JS/CSS, which you collectively describe as "self-hating formats" (?). While I (and most on this list) despise the use of the aforementioned formats in e-mails to the appropriate extent, I struggle to see how you are going to prevent them being transmitted using HillaryMail. All of the control codes of HTML are fully representable in ASCII, which is a strict subset of Unicode. How are you going to prevent people transmitting HTML over the protocol? It is up to the client to parse the HTML into its intended aesthetic form; the server has nothing to do with it. The only solution I could imagine is rejecting all messages containing attachments with MIME types other than plain-utf8, but is that really a good idea? I am interested, but gravely skeptical. -- Ashley Dixon suugaku.co.uk 2A9A 4117 DA96 D18A 8A7B B0D2 A30E BF25 F290 A8AA signature.asc Description: PGP signature
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On Wednesday, August 26, 2020 9:57 PM, Ashley Dixon wrote: > Why the name "HillaryMail", and why does the logo contain a picture of > Margaret > Thatcher? ;-) very true (re: thatcher). now i cannot unsee the thatcher in the pixel art. i have 2 options: (1) rename protocol into thatchermail. (2) find another pixel art that's actually for hillary. i got the thatcher pixel art from a site that claimed it's hillary [1]. as for the name "hillarymail", nothing against her. it's just that i heard so much about hillary's mails up to a point all mails started to feel as if they belong to her. i also named my passwords manager after nsa [2] for a similar reason (even though i find nsa to be much more trustworthy than my neighbours). > More seriously, do you intend to write a reference implementation, or submit > this as a more formal R.F.C. in the event of it attracting more attention? i intend to eventually write a reference implementation either way (hopefully). specially that this seems to me very easy to implement, yet it seems also powerful. not sure what "formal r.f.c." means. (a) if it means a less ambiguous description, then "yes, but at a natural pace based on demand" (in the spirit of occam's razor). (b) if it means an r.f.c. submitted to isoc/ietf, then "no". i think we should ignore standard bodies for awhile since they seem to be ignoring us. > Furthermore, accusing every SMTP/POP/IMAP user to be an "idiot" may not be the > best way of attaining support; I must admit, I have never seen that in an > initial protocol proposal. imo that's a parsing error on your side. to me "idiot" didn't refer to smtp/pop/imap users. it rather referred to those those who can't use address books or bitcoin. either way i've just replaced "idiots" by "people". "idiot" wasn't justified either way. > I'm also slightly confused regarding the "goals" section. By "easy to > install/use", do you mean "easy" for the people implementing the protocol, or > the people making use of said implementations? "Traditional" SMTP mail clients > have always been pretty straight-forward for me, although the difficulty > involved in implementing an M.T.A. is another story. I find this point rather > equivocal. i mean easy for both, but subject to the constraints specified under "goals" and "non-goals". e.g. if becoming easier would cause the protocol to end up needing to trust a sys admin, then that's not acceptable. but if it is possible to make it easier while still satisfying the constraints (goals/non-goals), then that's a good step forward (perhaps draft one?). -- [1] http://pixelartmaker.com/art/dffec5c6b08b94e [2] https://github.com/al-caveman/nsapass note: trying to remove pexpect dependency as it sometimes causes indefinite waiting. so it is not ready for those who want a solid app yet. that said, i really like it so far. imo after removing "pexpect" it will be perfect.
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On 8/26/20 3:33 PM, Grant Taylor wrote: I would suggest using any reference to Hillary Clinton. Typo: I would suggest *NOT* using any reference to Hillary Clinton. -- Grant. . . . unix || die
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On 8/26/20 2:33 PM, Caveman Al Toraboran wrote: as for the name "hillarymail", nothing against her. I would suggest using any reference to Hillary Clinton. I believe her name is too politically charged to use it in good faith. it's just that i heard so much about hillary's mails up to a point all mails started to feel as if they belong to her. Almost everything I heard about it seemed to be negative. What little I heard that wasn't negative was simply neutral. My opinion is that the name (independent of H.C.) and H.C.'s association would cause me to choose a different name. I'd suggest something that describes what it does. Note: I've not ready your proposal yet. I've earmarked to do so when I have more time. i intend to eventually write a reference implementation either way (hopefully). specially that this seems to me very easy to implement, yet it seems also powerful. "seems" is the operative word. I think you will find that there is MUCH more to it than what I think you think there is. not sure what "formal r.f.c." means. (a) if it means a less ambiguous description, then "yes, but at a natural pace based on demand" (in the spirit of occam's razor). How does Occam's Razor or Parsimony apply to this? (b) if it means an r.f.c. submitted to isoc/ietf, then "no". RFCs are decidedly outside of ISOC / IETF. i think we should ignore standard bodies for awhile since they seem to be ignoring us. Those sentiment / attitude is concerning to me. Just because you don't like something or disagree with it is not in and of itself a reason to ignore or avoid it. Especially when it is (RFCs are) the well established process to do something in the Internet community. imo that's a parsing error on your side. to me "idiot" didn't refer to smtp/pop/imap users. I would strongly suggest anything that can be construed as an ad hominem attack. it rather referred to those those who can't use address books or bitcoin. I think those are two very different things. Address books have existed for a long time and are included in all prominent devices / email clients in one form or another. The same can't be said about bitcoin. either way i've just replaced "idiots" by "people". "idiot" wasn't justified either way. There's no place, much less need for ad hominem attacks in standards documents, be they formal, e.g. ISO, IETF, or non-standards based, e.g. RFC. i mean easy for both, I find the goal of easy for the user to use and easy for the developer to develop to be almost diametrically opposed to each other. In my experience, it's either been a pay it forward once (developer) or pay it back perpetually (user). Which are you prioritizing? The developer or the user? I would strongly suggest the developer pay it forward so that the end users don't have to perpetually pay it back. but subject to the constraints specified under "goals" and "non-goals". e.g. if becoming easier would cause the protocol to end up needing to trust a sys admin, then that's not acceptable. Elaborate on what "trusting a system administrator" means and why it's not acceptable. I think you will find that there are regimes that will not allow technology that they can't see into and observe. As such, they will dictate that the technology trust the system administrator (regime). Lest they ban the technology. but if it is possible to make it easier while still satisfying the constraints (goals/non-goals), then that's a good step forward (perhaps draft one?). The requirement to go from informational RFC to standards track RFC is multiple independent implementations. So not only do you need to get your implementation working, but you also need to get someone else to completely independently create their own implementation and it must be interoperable with yours. Anything less and you'll never achieve anything but an informational RFC status. And you will need a standards track RFC status to get the big players to even think about entertaining the notion of this. -- Grant. . . . unix || die
[gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
hi. i request comments on this new mail protocol which i plan to implement some day if things turn out well. here is its zeroth draft: https://github.com/al-caveman/hillarymail rgrds, cm.
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On 8/26/20 1:57 PM, Ashley Dixon wrote: On Wed, Aug 26, 2020 at 05:19:16PM +, Caveman Al Toraboran wrote: hi. i request comments on this new mail protocol which i plan to implement some day if things turn out well. here is its zeroth draft: https://github.com/al-caveman/hillarymail I like what I see, so far. Interesting proposal. A few non-technical questions: Why the name "HillaryMail", and why does the logo contain a picture of Margaret Thatcher? ;-) More seriously, do you intend to write a reference implementation, or submit this as a more formal R.F.C. in the event of it attracting more attention? Nice idea. I suggest the R.P.4 so it can stay up 24/365. Furthermore, accusing every SMTP/POP/IMAP user to be an "idiot" may not be the best way of attaining support; I must admit, I have never seen that in an initial protocol proposal. I'll wear that moniker, as a follower and implementor and testor. I'm also slightly confused regarding the "goals" section. By "easy to install/use", do you mean "easy" for the people implementing the protocol, or the people making use of said implementations? "Traditional" SMTP mail clients have always been pretty straight-forward for me, although the difficulty involved in _implementing_ an M.T.A. is another story. I find this point rather equivocal. Whatever grant offers, surely I'll at least attempt to implement. email services are getting hammered, from a traditional functional perspective. I do not like what the big corps are doing and just want a standards complint , reasonable secure solution. Is there something better for me to follow than this offering from grant ? From the private emails I have received, over the last month or so, there is quite and interest in running your own (secure?) DNS and email services Perhaps there is a solution for the R.P.4 for other linux distros I have not found, yet? If so, I'd still want a gentoo centric solution. hth, James
Re: [gentoo-user] tips on running a mail server in a cheap vps provider run but not-so-trusty admins?
On 8/21/20 10:11 PM, Caveman Al Toraboran wrote: not a major point but just to clarify a thing. i think it's unfair to look at SMTP as a single thing that compares against HTTP*. because while HTTP* is a single-ish thing, SMTP is several things. i.e. SMTP is at least 2 parts: Fair point. As I see it, we have two things; 1) what is transferred (email message) and 2) how it is transferred (SMTP, UUCP, etc.). 1. resource exchange layer where people are defined as some kind of URL (e.g. n...@dom.zone) and attachments are base64-ed text balls referred to by some numbers in RFC822. That sounds like the "what is transferred" to me. As in the opaque value of the sender / recipient / body / attachments. It does not matter what the contents of those opaque values are. They make up what is transferred. This part overlaps with HTTP*. let's call this "RESXCH_SERVER". HTTP(S) can overlap with the "how" part of the transfer. But I believe that the HTTP(S) "how" part is independent of the opaque blob part of "what". 2. the part where it defines how to process the exchanged resources (e.g. safe storage, routing, etc). this part is beyond HTTP*'s scope, and is the "web app" scope. let's call this "RESUSE_SERVER" Okay. of course, email still doesn't work with those 2 parts, because you need a way to get mails to your email client, so you end up using POP or IMAP. now, this --itself-- is also two parts: That is highly dependent on your email client. Many traditional Unix email clients read email directly off the file system of the email server. In fact, most POP3(S) and IMAP(S) implementations read the same data off of the email server. The only difference being that the allow the email client to be remote from the email server. I'd like to point out that thus far this thread has been about how to get email between email servers. As such, I think client access protocols are somewhat outside of the existing scope. 1. resource exchange layer to send resources to users. which also overlaps with HTTP* (again). let's call this "RESXCH_CLIENT". The "how". 2. the part where it defines how the mail client to treat the resources. let's call this "RESUSE_CLIENT". See above comment about scope. This is also a "how". But "how" clients get email from servers is decidedly different than "how" servers exchange email. They can both use any underlying transport, be it TCP (like POP3 & IMAP) or HTTP(S). i disagree. i think this is more like it about the current email system: RESXCH_SERVER / RESUSE_SERVER / RESXCH_CLIENT / RESUSE_CLIENT I'm having trouble unpacking that. So I'll provide my version of what I think you're trying to say. Since all of this rides on top of TCP, I'm not going to call it out. 1) The sender (who-sender) sends their email (what) to their outbound email server (who-recipient) with SMTP (how). 2) (The sender's) outbound server (who-sender) sends (the sender's) email (what) to the (the recipient's) inbound server (who-recipient) with SMTP (how). 3) The recipient (who-recipient) pulls email (what) from their inbound server (who-sender) with POP3S / IMAPS (how). Notice how we have a what, who-sender, who-recipient, and how in each of these. The who-sender and who-recipient are the parties of each discrete conversation; 1, 2, or 3. Notice how the what (email) is an opaque blob on each leg of the transmission journey. There are four distinct points with three distinct paths in between. A) [1]---(SMTP)---[2]---(SMTP)---[3]---(POP3S/IMAPS)---[4] 1) Person sending the email. 2) #1's email server. 4) Person receiving the email. 3) #4's email server. (Yes I know those are not in numerical order. #3 and #4 are in dependency order.) The only way to remove a point and transmission path from this process end-to-end process is for #2 and #3 to be the same. B) [1]---(SMTP)---[2/3]---(POP3S/IMAPS)---[4] Other than mega email providers; Google, Microsoft, Yahoo, et al., you are going to have scenario A above. Each step of the way you have what is transferred (the message) and how it is transferred (the protocol) between two points. The what (email) is still an opaque blob on each leg of the transfer. it's 4 different layers to exchange mail between people. We apparently aren't using layers the same way. You seem to be using layers in place of hops. That is both inaccurate and unfair for a number of reasons. There can be any number of additional hops in between # 2 & 3 above for any number of reasons; legal, technical, political, etc. but if we plug HTTP* in the mix, it because only 3 different layers: HTTP* / RESUSE_SERVER / HTTP* / RESUSE_CLIENT You also seem to be describing scenario B above. Here is a variation on scenario A above that is completely realistic if not probable. C) [1]---(SMTP)---[2]---(SMTP)---[3]---(SMTP)---[4]---(SMTP)---[5]---(SMTP)---[6]---(POP3S/IMAPS)---[7] 1) The
Re: [gentoo-user] tips on running a mail server in a cheap vps provider run but not-so-trusty admins?
On Wed, Aug 26, 2020 at 2:51 PM Grant Taylor wrote: > > On 8/21/20 5:58 PM, Rich Freeman wrote: > > It is what just about every other modern application in existence uses. > > VoIP does not. Yes, but VoIP isn't just implementing a simple data-exchange API. It is a streaming protocol. > No RDBMSs that I'm aware of use it as their primary protocol. (Some may > be able to use HTTP(S) as an alternative.) These pre-date webservices in general. They aren't modern. > Outlook to Exchange does (did?) not use it. Again, not modern. > I'm not aware of any self hosted enterprise grade remote desktop > solution that uses HTTP(S) as it's native transport. Also streaming. > > DNSSEC is: > > > > 1. Still poorly supported even where it makes sense. > > Yet another example of ignorance and / or laziness. > > I have found DNSSEC to be relatively easy to implement, and trivial to > enable on my recursive resolvers. > > The ignorance portion is relatively easy to resolve if people want to. > I highly recommend DNSSEC Mastery by Michael W. Lucas. That $20 (?) > book and moderate amounts of motivation is all anybody that wants to > implement DNSSEC /needs/. Well, maybe check back when you get everybody who sends email to read that book. You can start with my mother. -- Rich
Re: [gentoo-user] tips on running a mail server in a cheap vps provider run but not-so-trusty admins?
On 8/21/20 5:58 PM, Rich Freeman wrote: It is what just about every other modern application in existence uses. VoIP does not. No RDBMSs that I'm aware of use it as their primary protocol. (Some may be able to use HTTP(S) as an alternative.) Outlook to Exchange does (did?) not use it. It does have a sub-optimal RPC-over-HTTP(S) option for things like mobile clients. But you still get much better service using native non-HTTP(S) protocols. I'm not aware of any self hosted enterprise grade remote desktop solution that uses HTTP(S) as it's native transport. Just because it's possible to force something to use HTTP(S) does not mean that it's a good idea to do so. I'm sure there are hundreds of articles on the reasons for this that are far better than anything I'd come up with here. Probably. And they don't work for anything OTHER than SMTP. There are /other/ libraries that work for /other/ things. Having a general thing that can be abused for almost all things is seldom, if ever, the optimal way to achieve the goal. A library for JSON/webservices/whatever works for half the applications being written today. I choose to believe that even that 50% is significantly sub-optimal and that they have been pressed into that role for questionable reasons. This is simple. This is how just about EVERYBODY does it these days. I disagree. Yes, a lot of people do. But I think it's still a far cry from "just about everybody". http works as a transport mechanism. Simply working is not always enough. Dial up modems "worked" in that data was transferred between two endpoints. Yet we aren't using them today. Frequently, we want optimal or at least the best solution that we can get. That is the beauty of standards like this - somebody else figured out SSL on top of HTTP so we don't need an email-specific reimplementation of that. I think that you are closer than you realize or may be comfortable with. "somebody else figured out" meaning that "someone else has already done the work or the hard part". Meaning that it's possible to ride people's coat tails. HTTP(S) as a protocol has some very specific semantics that make it far from ideal for many things. Things like the server initiating traffic to clients. Some, if not many, of these semantics impose artificial limitations on services. I mean, why use TCP? For starters, TCP ensures that your data arrives at the other end (or notifies you if it doesn't), that it's in order, and that it's not duplicated. There are multiple other protocols that you can use. UDP is a prominent one. Why not use something more tailored to email? Now you're comparing an application layer protocol (email(SMTP)) to a network transport protocol (TCP / UDP / etc.). What transport layer protocol would you suggest using? Be careful to trace higher layer abstraction protocols, e.g. QUIC, back down to the transport layer protocol (UDP in QUIC's case). TCP probably has a dozen optional features that nobody uses with email, so why implement all that just to send email? What contemporary operating system does not have a TCP/IP stack already? How are applications on said operating system speaking traditional / non-QUIC based HTTP(S) /without/ TCP? Even exclusively relying on QUIC still uses UDP. The answer is that it makes WAY more sense to recycle a standard protocol than to invent one. You're still inventing a protocol. It's just at a higher layer. You still have to have some way / method / rules / dialect, more commonly known as a protocol, on whatever communications transport you use. Even your web based application needs to know how to communicate different things about what it's doing. Is it specifying the sender or the recipient or the subject or something else. Protocols are what define that. They are going to exist. It's just a question of where they exist. You're still inventing a protocol. Do you want your protocol to run on top of a taller more complex stack of dependencies? Or would you prefer a shorter simpler stack of dependencies? You're still inventing a protocol. You're just choosing where to put it. And you seem to be in favor of the taller more complex stack. Conversely I am in favor of the shorter simpler stack. If SMTP didn't exist, and we needed a way to post a bunch of data to a remote server, you'd use HTTP, because it already works. No. /I/ would not. HTTP(S) is inherently good at /retrieving/ data. We have used and abused HTTP(S) to make it push data. Depending what the data was and the interactive nature of it, I would consider a bulk file transfer protocol FTPS / SFTP / SCP or even NAS protocols. Things that are well understood and well tested. If I had some reason that they couldn't do what I needed or as efficiently as I needed, I would develop my own protocol. I would certainly do it on top of a transport protocol that ensured my data ar
Re: [gentoo-user] new mail protocol rfc (was Re: tips on running a mail server in a cheap vps provider run but not-so-trusty admins?)
On Wed, Aug 26, 2020 at 05:19:16PM +, Caveman Al Toraboran wrote: > hi. i request comments on this new mail protocol > which i plan to implement some day if things turn > out well. here is its zeroth draft: > > https://github.com/al-caveman/hillarymail Interesting proposal. A few non-technical questions: Why the name "HillaryMail", and why does the logo contain a picture of Margaret Thatcher? ;-) More seriously, do you intend to write a reference implementation, or submit this as a more formal R.F.C. in the event of it attracting more attention? Furthermore, accusing every SMTP/POP/IMAP user to be an "idiot" may not be the best way of attaining support; I must admit, I have never seen that in an initial protocol proposal. I'm also slightly confused regarding the "goals" section. By "easy to install/use", do you mean "easy" for the people implementing the protocol, or the people making use of said implementations? "Traditional" SMTP mail clients have always been pretty straight-forward for me, although the difficulty involved in _implementing_ an M.T.A. is another story. I find this point rather equivocal. -- Ashley Dixon suugaku.co.uk 2A9A 4117 DA96 D18A 8A7B B0D2 A30E BF25 F290 A8AA signature.asc Description: PGP signature
Re: [gentoo-user] tips on running a mail server in a cheap vps provider run but not-so-trusty admins?
On 8/21/20 10:15 PM, Caveman Al Toraboran wrote: just to double check i got you right. due to flushing the buffer to disk, this would mean that mail's throughput is limited by disk i/o? Yes. This speed limitation is viewed as a necessary limitation for the safety of email passing through the system. Nothing states that it must be a single disk (block device). It's entirely possible that a fancy MTA can rotate through many disks (block devices), using a different one for each SMTP connection. Thus in theory allowing some to operate in close lock step with each other without depending on / being blocked by any given disk (block device). Thank you for the detailed explanation Ashley. or did i misunderstand? You understand correctly. i sort of feel it may suffice to only save to disk, and close fd. then let the kernel choose when to actually store it in disk. As Ashley explained, some MTAs trust the kernel. I've heard of others issuing a sync after the write. But that is up to each MTA's developers. They have all taken reasonable steps to ensure the safety of email. Some have taken more-than-reasonable steps. -- Grant. . . . unix || die