1 | | er, can't send unauth mail from some places. Though it's been noted that that list of places will increase eventually. |
| 1 | To clarify, in out-of-band conversations with Garry and Mark, it's been noted that unauth mail is only going to get more restrictive, not less. I think we need to think harder about this. Some points to consider. |
| 2 | |
| 3 | - Back in the day (like, the 8.4 days -- Greg or someone should correct me if my memory or inferences are wrong), we moved from Athena machines doing direct delivery to all going through outgoing. I think was from a desire not only to have mail take a known path, but also because a broken sendmail config could easily cause stupid mail loops. If we move back to encouraging direct delivery, we should make sure we've thought about this. |
| 4 | - Keytabs are not obviously the wrong answer here for private machines, and we should encourage their use. |
| 5 | - Saving credentials on machines probably _is_ the wrong answer. Should we support this anyway? |