When I write software, I know that it will fail, either due to my own mistake, or due to some other cause.
The Postfix security model is based on keeping software simple and stupid.
Lack of documentation is becoming a problem for acceptance.
Defect-free software does not exist.
Windows favors multi-threading, which means that a service is implemented by one single process.
However, writing software without defects is not sufficient. In my experience, it is at least as difficult to write software that is safe - that is, software that behaves reasonably under adverse conditions.