alt Hacker NewsThere's a weird folk belief that Exim is a secure 2nd-generation MTA, but it's not; it's a 1st generation MTA, like Sendmail and Smail. The two "secure" 2nd generation MTAs are Postfix and qmail. You shouldn't use those either, really; there is no reason to run a memory-unsafe MTA, or, for that matter, an MTA that isn't backed by a real database.
Replies
The problem with qmail is, everybody use a fork. No body use the real thing.
The official release is not standard compliance. It does not support anything modern spam filter need. It don't get new updates or features. It have funny license.
You can use a fork... but I need to ask: which fork?
Which one would you suggest using?
I’ve been looking at Stalwart to replace my old exim setup, wondering if it’s a reasonable choice.
I run postfix in a receive-only mode to power inbound email processing. I'm very very glad there's no database requirement. It just passes the processing of inbound emails to a filter over stdin, which can do whatever it wants with databases or whatever it needs.