Hi Scott,
Changing the debconf question to ask about abtract terms rather than
provide
specific IP addresses is more likely to result in less experienced users
picking incorrect choices. Understanding what a safe choice is (or if a
safe choice is even possible) requires more knowledge of networking than an
explicit list of IP addresses. You have to understand subnet boundaries to
know what IP addresses are covered by the choice subnet.
I doubt this is the case - in order to be able to answer the question
properly now you need to have knowledge of your network and CIDR suffix,
which already requires quite some skill.
If you are worried about users picking the wrong choices and making
themselves an open relay, I think the proposed change does not reduce this
chance.
But it does prompt another thing with me: might it be an idea to remove
the question altogether, and install postfix with a default
mynetworks_style=host? This would have the following advantages:
* Is the safe base for every install;
* Keeps on working as expected if you move networks;
* Reduces questioning of the user;
* Vast majority of systems installed will not want to accept mail from the
internet anyway;
* Those that want to, will need to be more specifically configured anyway
(mailbox setup, aliases, virtual domains, virus scanning, I just name a
few), so the debconf question in itself doesn't add that much value for
those situations anyway.
I hence conclude that removing the question may even be the better option.
I'm glad to hear opinions on this.
Thijs
