ankush grover wrote:
c) Security of Maildir means even root user should not be able to read any user's mail.
You can do that with SElinux... you would have to limit filesystem access AND user access so that root just not su to a user and access it from there.
But someone who have physical access to the server will be able to get access. Administrative routines need access too, for stuff like backup and restore.
So for c) I would limit what I can and then have audit routines to map usage.
-- //Morten Torstensen //Email: morten@xxxxxxxxxxx //IM: Cartoon@xxxxxxxxx morten.torstensen@xxxxxxxxx And if it turns out that there is a God, I don't believe that he is evil. The worst that can be said is that he's an underachiever. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
