There is need to initiate the process of migrating from the Exim mailrelay as it poses security and vulnerability risks to the business
The HMCTS repo is a fork or a personal repo by Luigi who has left the project for some time now
His repo is a fork of the original Exim repo which has moved since it was forked off the main branch. We currently are still on release 4, the original repo is now at release 21.
Maintenance is tasking and always a tedious task when fixing issues around the Exim relay, its relay fragile
We can still restrict client access using sendgrid’s IP Access Management, which is the main use case for the PCOL service
Service can better monitor emails performance, view logs, metrics etc as there is a User interface available, this does not exist for exim and would have to look for logs on the pods and can’t follow history data
Due to the limited knowhow of Exim, as it's not a technology that's widely used, upgrading is going to require quite some time and effort for the team and may introduce breaking changes for the services currently still using Exim mailrelay.
Ideally, we should be using a SaaS service if available and sendgrid is available for use, all the other services teams use sendgrid currently and to the best of my knowledge UIPath and one or two Heritage service (PCOL) still use mailrelay.
Proposed target services are:
DCS
UI Path
PCOL*
Preferred solution is Sendgrid which is a SaaS solution provided by Azure
Intended Outcome
Above listed services no longer using Exim Mailrelay service
All Exim Mailrelay (1 & 2) decomed and not running on the clusters
naconnolly
commented
7 months ago
DTSPO-13163
Summary
There is need to initiate the process of migrating from the Exim mailrelay as it poses security and vulnerability risks to the business
Due to the limited knowhow of Exim, as it's not a technology that's widely used, upgrading is going to require quite some time and effort for the team and may introduce breaking changes for the services currently still using Exim mailrelay. Ideally, we should be using a SaaS service if available and sendgrid is available for use, all the other services teams use sendgrid currently and to the best of my knowledge UIPath and one or two Heritage service (PCOL) still use mailrelay.
Proposed target services are:
Preferred solution is Sendgrid which is a SaaS solution provided by Azure
Intended Outcome
Above listed services no longer using Exim Mailrelay service
Impact on Teams
No Impact