I made SMTP transport the default for OUTGOINGMAIL for two reasons: 1) Since our /usr/sbin/sendmail implementation went through the shell, there was a potential security risk with incoming mail. If someone embedded the right shell commands in their Return-Path, they could get executed by TMDA inadvertently.
2) Argument quoting and escaping issues when TMDA tried to respond to a really malformed address that confused the shell. However, I've now checked in an implementation[1] that doesn't use the shell at all, so the above problems should hopefully be non-issues. So, I'm considering reversing the default for OUTGOINGMAIL because I see the following problems with the SMTP default: a) qmail doesn't let localhost relay by default, so we get 1001 questions on tmda-users first about why TMDA isn't sending any mail, and then about how to setup qmail's obscure relaying mechanism. This is FAQ 3.3. The user probably just ends up setting OUTGOINGMAIL to 'sendmail' to fix things. b) With Sendmail/Postfix/Exim, if TMDA tries to respond to a bogus local address, the MTA refuses the transmission during the SMTP transaction resulting in an LOGFILE_DEBUG traceback. This is FAQ 3.7 essentially. The user probably ends up setting OUTGOINGMAIL to 'sendmail' to fix things. Reversing the default would solve both of these issues, with no additional problems created (assuming the new /usr/sbin/sendmail code works as advertised). I know it's late in the game to make changes like this, but I'm tired of answering a) and b) on tmda-users, and don't want to continue doing so for the rest of TMDA 1.0's lifetime. Thoughts? Footnotes: [1] http://mla.libertine.org/tmda-cvs/2003-10/msg00019.html _________________________________________________ tmda-workers mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-workers
