Re: Security of Sendmail and -T error

The best way to avoid security problems with sendmail is to avoid using it (at least directly). Postfix is a drop-in replacement for sendmail, which would allow you to get rid of it altogether.

There are a number of Perl modules available to send e-mail, from the very simple (Net::SMTP, to the effective (Mail::Sendmail), to the fully-equipped (MIME-Tools).

I tend to favour using Mail::Sendmail, which, despite its name, does not require the sendmail program (it just needs the hostname of a local MTA, which defaults to localhost), and is also pure Perl.

Comment on Re: Security of Sendmail and -T error

Replies are listed 'Best First'.
Re: Re: Security of Sendmail and -T error by bradcathey (Prior) on Dec 14, 2003 at 14:10 UTC
Thanks grinder for the practical suggestions, I will look into those other modules. I'm still curious why sendmail is so frowned upon, but for now I'll take the advice I'm seeing here as ample. Update: I checked on `mail::sendmail` and my primary web hosts have it installed. The documentation on CPAN seems simple enough, so I'm off and running with a new way (hopefully more secure way) to send mail. Thanks again. UPDATE 2: Actually have `Mail::Sendmail` now working on a live site and it's way cool. Less typing and the From address is better. —Brad "A little yeast leavens the whole dough."	[reply] [d/l] [select]

Replies are listed 'Best First'.

Re: Re: Security of Sendmail and -T error
by bradcathey (Prior) on Dec 14, 2003 at 14:10 UTC

grinder

sendmail

Update:

mail::sendmail

UPDATE 2:

Mail::Sendmail

—Brad
"A little yeast leavens the whole dough."

[reply]
[d/l]
[select]