From nobody Sat Feb 05 14:13:00 2022 X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 8A72E19B57A7 for ; Sat, 5 Feb 2022 14:13:05 +0000 (UTC) (envelope-from cy.schubert@cschubert.com) Received: from omta001.cacentral1.a.cloudfilter.net (omta001.cacentral1.a.cloudfilter.net [3.97.99.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4JrZB86MTRz3ljn; Sat, 5 Feb 2022 14:13:04 +0000 (UTC) (envelope-from cy.schubert@cschubert.com) Received: from shw-obgw-4002a.ext.cloudfilter.net ([10.228.9.250]) by cmsmtp with ESMTP id GJVxntrrC5Rf1GLoGnXh9k; Sat, 05 Feb 2022 14:13:04 +0000 Received: from spqr.komquats.com ([70.66.148.124]) by cmsmtp with ESMTPA id GLoEnXBcVa4s1GLoFn4Ddf; Sat, 05 Feb 2022 14:13:04 +0000 X-Authority-Analysis: v=2.4 cv=S9vKfagP c=1 sm=1 tr=0 ts=61fe85f0 a=Cwc3rblV8FOMdVN/wOAqyQ==:117 a=Cwc3rblV8FOMdVN/wOAqyQ==:17 a=xqWC_Br6kY4A:10 a=kj9zAlcOel0A:10 a=oGFeUVbbRNcA:10 a=6I5d2MoRAAAA:8 a=a_U1oVfrAAAA:8 a=YxBL1-UpAAAA:8 a=EkcXrb_YAAAA:8 a=zzDZMH1rJaIYcIVx9r0A:9 a=CjuIK1q_8ugA:10 a=IjZwj45LgO3ly-622nXo:22 a=ILgoY2Ve9XsnFM_ECIJt:22 a=Ia-lj3WSrqcvXOmTRaiG:22 a=LK5xJRSDVpKd5WXXoEvA:22 Received: from slippy.cwsent.com (slippy [10.1.1.91]) by spqr.komquats.com (Postfix) with ESMTP id 0F62E538; Sat, 5 Feb 2022 06:13:01 -0800 (PST) Received: from slippy (localhost [IPv6:::1]) by slippy.cwsent.com (Postfix) with ESMTP id C19D2149; Sat, 5 Feb 2022 06:13:00 -0800 (PST) X-Mailer: exmh version 2.9.0 11/07/2018 with nmh-1.7.1 Reply-to: Cy Schubert From: Cy Schubert X-os: FreeBSD X-Sender: cy@cwsent.com X-URL: http://www.cschubert.com/ To: David Chisnall cc: freebsd-current@freebsd.org Subject: Re: Dragonfly Mail Agent (dma) in the base system In-reply-to: References: <835dc887-6491-602c-7d71-d99309871126@siemens.com> Comments: In-reply-to David Chisnall message dated "Fri, 04 Feb 2022 11:19:55 +0000." List-Id: Discussions about the use of FreeBSD-current List-Archive: https://lists.freebsd.org/archives/freebsd-current List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-current@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sat, 05 Feb 2022 06:13:00 -0800 Message-Id: <20220205141300.C19D2149@slippy.cwsent.com> X-CMAE-Envelope: MS4xfG/9rJE1g5TtNOJGmELpZtLGPO0mgkM/4WMvrErs62gopgruinqqqu4hvN7pIBtA4EkN5s9n13Z4VHuc3baE0EBpX7CEtAfqcH+4jZzylWQm6GADG1I8 hywI4mf40hfjiM6r3M6+Ll81kykka4FdB2OnT6e+nGqzbzWRbapIADiuY9FVOAvjCq9dF2b2H8hsnlw/9o/dNoQGHCSqWtCSR5qneIBMpXnouFkf3dkC+hEP uZpy7voz/NJaF6ptaKMR/A== X-Rspamd-Queue-Id: 4JrZB86MTRz3ljn X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of cy.schubert@cschubert.com has no SPF policy when checking 3.97.99.32) smtp.mailfrom=cy.schubert@cschubert.com X-Spamd-Result: default: False [0.64 / 15.00]; HAS_REPLYTO(0.00)[Cy.Schubert@cschubert.com]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; RWL_MAILSPIKE_GOOD(0.00)[3.97.99.32:from]; RCVD_IN_DNSWL_MED(-0.20)[3.97.99.32:from]; RCPT_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:16509, ipnet:3.96.0.0/15, country:US]; RCVD_TLS_LAST(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[70.66.148.124:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.52)[-0.518]; RCVD_COUNT_FIVE(0.00)[5]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.98)[-0.981]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[cschubert.com: no valid DMARC record]; AUTH_NA(1.00)[]; NEURAL_SPAM_SHORT(0.94)[0.936]; MLMMJ_DEST(0.00)[freebsd-current]; R_SPF_NA(0.00)[no SPF record] X-ThisMailContainsUnwantedMimeParts: N In message , David Chisnall w rites: > On 30/01/2022 14:01, michael.osipov@siemens.com wrote: > > Sendmail: The biggest problem is that authentication strictly requires > > Cyrus SASL, even for stupid ones like PLAIN/LOGIN, accourding to the > > handbook you must recompile sendmail from base with Cyrus SASL from > > ports to make this possible. A showstopper actually, for two reasons: > > 1. I don't like mixing base and ports, it just creates a messy system. > > 2. While this may work with hosts, when you have jails running off a > > RELEASE in Bastille this obviously will not work. > > Not going to work with sendmail easily. > > I think this is a critical point: at the moment, we're paying the cost > of having a full-featured MTA in the base system, without getting most > of the benefits. Around 2003, I hit exactly this problem. The > instructions after update were slightly terrifying: after each base > system or ports update, I potentially had to recompile my own sendmail. > > There's now a sendmail+sasl configuration in packages and so I was > incredibly happy to be able to move away from using sendmail in base. > Now I have two copies of sendmail on some machines. The one in ports, > for compatibility reasons, looks for config in /etc/mail not under > LOCALBASE, which is a layering violation and means that freebsd-update > periodically tries to corrupt my config. > > I have no strong opinions about where we move to, but moving *from* > shipping a limited sendmail in base would make me very happy. I'd like to add, proceed cautiously. I've been running postfix on my external gateway for a couple of decades but recently migrated all but one of my internal machines from sendmail to postfix. There were a couple of hiccups along the way. In one case there was a mail loop of at(1) jobs which required the tweak of a procmail rule. In the second case nmh submits mail to localhost:587 requiring altering master.cf. nmh uses only that port though it can pipe directly to the sendmail binary when built that way. If dma doesn't support SMTP submission, we may need to review various port default options or whether ports even support it. -- Cheers, Cy Schubert FreeBSD UNIX: Web: https://FreeBSD.org NTP: Web: https://nwtime.org The need of the many outweighs the greed of the few.