著者: Chris Gerhard 日付: To: exim-users 題目: [exim] Least privilege in Solairs
Is anyone working on a privilege aware exim version which takes
advantage solaris privileges so that it can be even more secure?
For starters it would stop it from having to be setuid root and being
able to drop others from it's children would be great. If proc_exec
could be removed it would dramatically reduce the risk of any exploit
being able to start a shell.