On 2024-10-04 08:05:14 -0400, Wietse Venema via Postfix-users wrote: > Vincent Lefevre via Postfix-users: > > Debian runs most postfix services in a chroot, with the consequence > > that the resolv.conf file may become obsolete. This is a particular > > annoyance on a laptop, where this file typically changes often as > > the laptop moves from one place to another. At > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070120#27 > > I think that a suitable configuration for a device on an unstable > IP address is not to run a remotely accessible SMTP daemon,
Yes, but this is debatable (the IP address is stable most of the time, and I had a config where I received mail by SMTP at such time, but only from a limited set of servers - that's a very specific config, though). > and to drop off outbound mail to a trusted server instead of sending > mail direct into the Internet. This is what I do (except when this trusted server is down, which is very rare). > That eliminates most of the threats that Postfix chroot aims to > address, and there is no need to run Postfix daemons chrooted. OK. I suppose that this should be the most common situation for the average user. So this is what Debian should do, according to its own rules. > The details of what files, and when, to sync into the chroot jail > are highly dependent on the OS type and OS version. It is therefore > up to the OS distro maintainers to deal with it. I understand. I was just suggesting a warning that there are such issues, not how to solve them. -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon) _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
