Florian Pritz:
> > Why don't YOU try it, and then report how well the idea works. I
> > suggest that you also consider the implications of a malicious
> > application sending mail with forged sender addresses, and Postfix
> > then bouncing that mail to innocent people.
>
> That's exactly why I want to put stuff on hold.
>
> > But is seems to be that the problem is better solved at the source:
> > fix those damned broken web applications.
>
> The main use case here is limiting the damage a hacked application can
> do. Given there tend to be rather many applications installed at once
> in a shared webhosting environment the attack surface is rather large.
>
> I'm not sure why you are reacting this aggressively. I couldn't find
> any prior discussion about a feature like this so I figured I'd ask.
> Sorry if that seems inappropriate to you.
Sorry, I don't hug and kiss people who make suggestions. That doesn't
mean that I am hostile to suggestions.
I am making recommendations for what to consider when you implement
this feature, and I also recommend fixing the problem at its source.
Surely, if PHP (etc.) apps can send mail, by now someone wil have
thought of putting a limiter into PHP (etc.).
Wietse
