[jrockway]

So, if you want to relay mail out of your MX, it's going to be flaky from a DSL or cable line. The reason is because much of the email coming out of those IP ranges is virus-sent spam, many mail servers block those IP ranges. (ISPs are doing a pretty good job filtering port 25 these days. The only really annoying spam I get is from Sprint's mobile network. I would block those IP ranges, but I want to be able to relay mail from my Sprint mobile phone :)

I run a mail server on my Linode and have never had trouble sending mail. It's easy to see if you're on a blacklist and take corrective action, though I've never had to do this.

I recently switched from Postfix to Exim4 and like it a lot more. The spam checking is much better integrated and lets you reject messages at DATA time with full spam information, so real messages that are auto-rejected at least bounce with an informative message.

Finally, if you don't like delayed mail, get a backup MX. It's very easy to set up for your friends that run their own primary MX, and you can return the favor. (I buy a backup MX service, but run backup MX for people that have asked.)

[phunel]

Good idea on the backup MX.

I do have Exim4 setup on a Linode for outgoing status updates (mainly Fail2Ban), but have yet to use it in lieu of Gmail/Google Apps.

As mentioned previously I'm a bit nervous about leaving my mail on a third party box - though Linode has been nothing but a reliable service to date.

[jrockway]

What's your reason for being worried? The government can get a search warrant for your house just as easily as they can get one for Linode's servers. The only difference is that when Lindoe's servers are seized, they eat the cost. (And you aren't awakened at 3am by dudes with guns. Not that this has happened to me :)

If you're worried for backup reasons, just sync with offlineimap. I do this to have a faster local cache (since I consider Linode more reliable than my desktop computer). (Even gmail is fine if you back it up.)

[phunel]

I'm far less worried about government intrusion than I am generally of corporate intrusion. The relationship, as it stands, consists of me willingly giving all my private communications to a third party I have no standing with. I'm questioning my own behavior in that equation much more than any scenario where a government entity serves and act on a warrant. I don't ever expect to be in that position, nor have I, but I have been in the position where my commercial and private correspondents has been violated by companies I am in competition with and employees who I no longer work with. Good luck with the lawsuit, the damage has been done in those situations.

[jrockway]

Take a look at Google's privacy principles here:

http://www.google.com/intl/en/privacy/

I can't speak for Google, of course, but my own take is that privacy is taken very seriously internally. Perhaps more seriously than anything else, actually. Google is generally open with employees with respect to source code, financial data, and access controls, they are not that way with user data. I don't have access to it, and couldn't get access to it unless it's vital to the success of my project (and then, only for a limited time period).

I even have a sticker with the 5 privacy principles stuck to my monitor's base.

[marshray]

Don't confuse "internal secrecy" with "user privacy".

That user data is company property and its secrecy is what gives it value. Furthermore, if users caught wind of just how much of it exists that could jeopardize its source.

[jrockway]

We tell users exactly how we use their data. We're even running an ad campaign on the NYC subway (and presumably elsewhere) about how we use user data in non-intuitive ways.

Here's the relevant section:

http://www.google.com/goodtoknow/data-on-google/

[dedward]

consider people who dont live in the us?