what about adding ssl to qmail's smtp? http://www.esat.kuleuven.ac.be/~vermeule/qmail/tls.patch http://www.qmail.org/top.html#addons ---quote--- This patch implements RFC2487 in qmail. This means you can get SSL or TLS encrypted and authenticated SMTP between the MTAs and between MTA and an MUA like Netscape. The code is considered experimental (but has worked for many since its first release on 1999-03-21). ---/quote---
I'm looking into this, but a couple of the caveats listed in the patch bother me a little: -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Caveats: - from this version on the server cert is in servercert.pem. - binaries dynamically linked with current openssl versions need recompilation when the shared openssl libs are upgraded. - this patch could conflict with other patches (notably those replacing \n with \r\n, which is a bad idea on encrypted links). Qmail.org has a link to a combined tls+auth patch. - some broken servers have a problem with TLSv1 compatibility. Uncomment the line where we set the SSL_OP_NO_TLSv1 option. - needs working /dev/urandom for seeding random number generator. - packagers should make sure that installing without a valid serververt is impossible -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Ok... I can't get this to run properly on my gcc-3.1 box. I have no other free boxes to test mail on. I can send messages just fine, but I can't receive. I'll post my ebuild here so someone else can test this out. Error is as follows: @400000003d0721f10aacbffc /var/qmail/bin/qmail-smtpd: error while loading shared libraries: libc.so.6: failed to map segment from shared object: Cannot allocate memory
Created attachment 1478 [details] qmail ebuild+stuff tgz
bad news: same with my gcc 2.95.3 (standard gentoo 1.2) box: @400000003d0a18e2293994cc /var/qmail/bin/qmail-smtpd: error while loading shared libraries: libc.so.6: failed to map segment from shared object: Cannot allocate memory
*** This bug has been marked as a duplicate of 2808 ***
