mailscanner + exim release from out queue
Martin Hepworth
maxsec at gmail.com
Mon Apr 29 14:22:55 IST 2013
Also amavis is rcommended to use one MTA (Postfix), but by NOT scanning at
MTA and forming a sandwich between two MTA queue's MailScanner is much more
MTA agnostic.
from the amavis-new docs..
*****
supported MTA configurations:
- Postfix <http://www.postfix.org/> supported and thoroughly tested
(advanced content filtering model);
- dual-sendmail and other dual-MTA configurations (any MTA type
including qmail) with *amavisd-new* relaying between them (SMTP) is the
recommended setup (for speed and flexibility) with other mailers;
*****
So even amavis recommend dual MTA for systems where you don't run the
preferred MTA (postfix).
Martin
--
Martin Hepworth, CISSP
Oxford, UK
On 29 April 2013 13:30, Glenn Steen <glenn.steen at gmail.com> wrote:
> Hello Jonas,
>
> That MailScanner doesn't operate at SMTP-time is exactly what sets it
> apart... It is the fundamental difference that make MailScanner perform so
> much better, and suffer from so much less risk of DoS:ing, than amavisd ...
> Sure, you cannot do "on the fly rejections", but ... AV/Anti-UCE scanning
> is to expensive at that stage anyway (IMO)... apart from the simple things
> you can do in the MTA, that is (recipient verification, rfc strictness,
> graylisting etc). But the benefits of not doing it in one go, as amavisd
> does, far outweigh that drawback.
> If one were to somehow wrangle MailScanner into action during SMTP... one
> could as well use amavisd instead;-).
>
> As for choice of MTA, one should always stick with the one one is most
> comfortable with ... You're far less likely to foobar things if you know
> what you're doing:-). If one starts from scratch, taking into account what
> happens to be the default on the system you use seem like a very sound
> strategy:-).
>
> Cheers!
> --
> -- Glenn
>
>
> On 29 April 2013 12:16, Jonas Akrouh Larsen <jonas at vrt.dk> wrote:
>
>> Hi Alex
>>
>> We use exim as well, the reasoning was that since we use debian, and exim
>> is default in dbian, it would be the most obvious choice. Also exim is
>> extremely modular/expandable/customizable. While postfix might be possible
>> to expand customize as well, my impression is that it's not as simple as
>> exim.
>>
>> We've been using exim+mailscanner for 5+ years with great results.
>>
>> My only caveat to the setup, is that we can't do the scanning at smtp
>> time like amavisd does.
>>
>> Best regards
>>
>> Jonas Larsen
>>
>> -----Oprindelig meddelelse-----
>> Fra: mailscanner-bounces at lists.mailscanner.info [mailto:
>> mailscanner-bounces at lists.mailscanner.info] På vegne af Alex Neuman
>> Sendt: 27. april 2013 17:58
>> Til: MailScanner discussion
>> Emne: Re: mailscanner + exim release from out queue
>>
>> Just for informational purposes - I'm not judging - I'd like to know why
>> you've chosen Exim over Sendmail or Postfix, for example. If it's too "off
>> topic" it's ok to answer off-list - y en español si te es más fácil :D
>>
>>
>> --
>> MailScanner mailing list
>> mailscanner at lists.mailscanner.info
>> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>>
>> Before posting, read http://wiki.mailscanner.info/posting
>>
>> Support MailScanner development - buy the book off the website!
>>
>
>
>
> --
> -- Glenn
> email: glenn < dot > steen < at > gmail < dot > com
> work: glenn < dot > steen < at > ap1 < dot > se
>
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20130429/be7749e9/attachment.html
More information about the MailScanner
mailing list