It is rare for me to log in as root. I have considered seriously about disabling that login.
Yes, HTTP/S and SMTP will be on the same machine. Is there a hazard to that end? They are completely different protocols communicating on different ports, after all. It does appear to work, my installation, that is. I basically followed a recipe, but lacked the knowledge of the chemistry that occurs within. And that can be as correct as the authors of blogs, websites, books. Beyond access to this data, it is easy for me to mis-interpret the meanings of the parameters I'm filling out. I have a feeling that I did something stupid and that it works simply by happen-chance. Thanks for your feedback ----- Original Message ----- From: Manuel Bieling Sent: 10/02/13 04:10 PM To: postfix-users@postfix.org Subject: Re: Does my configuration reflect the current best practices? On 10/02/2013 10:39 PM, Tim Legg wrote: > I have a username on this machine that I log in with, but choose to not have that username be an e-mail address. Hopefully this user is not called root. I recommend to disable root login. And I also recommend to disable any other user how has an e-mail address. Actually I recommend to disable password login at all. HTTP/S and SMTP on the same machine? > Given my configuration, does anybody see any exploits or weaknesses? Didn't read > I'm not sure of myself that I have done all that I need to. Monitoring will show you where you are now. Security is a process. Manuel Bieling (layman)
