So my server is CentOS 7 x64 and I've just followed this guide.
This works fine, however as the comment at the bottom implies, I've had to allow "Access for less secure apps" in my Google account.
So now I'm thinking, if my server gets owned then the attacker will have access to my Google account credentials as well. While having 2FA on my Google account, I still feel eerie of having that kind of attack vector on my server.
So I'm wondering whether there's a safer (yet reliable) alternative to this. Mailgun springs in mind but I've only seen examples using curl, which is pretty cool but I'd rather have that smtp server configured because of some web apps on my server.
[link] [comments]