Are you reviewing the code changes to the packages you're using? Following industry best practices for change processes? Who is monitoring all of this anyway? I mean, who is reviewing logs, correlating with IoC hourly and using a follow-the-sun security monitoring? If you don't see yourself being compromised, then I guess everything is ok? This sort of stuff is much more critical to get right on a mial server than just about any other type of service. This is all on top of the regular patch, monitor, and repair work you have to do (aka system hygiene). Or maybe that critical email you sent and dint get a response to, was stuffed into the recipient's spam folder… You will start wondering if today is the day all email is rejected. Even if you have the Virgin Mary of IP reputations, YOU STILL KNOW. Worse yet, you will SILENTLY lose emails as your mail is either placed in the spam folder, or just outright silently rejected. IP reputation filters will flag you as spam for no reason, and when it is just you begging to be unblocked, they will all fix it at a snails pace. Your antiquated spam filter is next to useless now. Expect to be probed, explored and DoS'ed at the network level. It is one of the most targeted network service, with shit all security. Yes – They are easy to set up, and with enough experience, can be configured and hardened well. Yes – I have run mail servers for business and personal. Mail servers just aren't worth self-hosting anymore.Įven if you have the security know how to manage it correctly, getting blacklisted and dealing with the spam makes it too intensive to manage correctly.ĮDIT: To answer some Questions and expand on my response:
0 kommentar(er)
