However, his point about the program's slightly risky, monolithic design is well taken, and cautious sites may wish to adopt Postfix (which is open source licensed) or Qmail (which has an almost open source license) (see Resources).
CNN: Analysis: Linux security