Re: [exim] Systemd sandboxing, syscalls etc.

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMKai Bojens at <-
.MMike Tubby at ->
Delete this message
Reply to this message
Author: Jeremy Harris
Date:  
To: exim-users
Subject: Re: [exim] Systemd sandboxing, syscalls etc.
On 13/02/2020 12:03, Kai Bojens via Exim-users wrote:
> Would it be possible for the Exim project to provide some insights into
> which syscalls, capabilities, access to directores and so on are
> required?

Not in full. We don't maintain a register of all possibly-used
syscalls, and Exim can be built with many different combinations
of libraries, each of which would be using different syscall sets.

So far as filesystem use goes: we regard everything under the
spooldir top level as fair game, plus the config file and anything
it includes as config portions. But config content can also
specify additional file accesses; Ex does not limit where they are
placed, if any.
--
Cheers,
Jeremy

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[exim] Systemd sandboxing, syscalls etc.Re: [exim] Systemd sandboxing, syscalls etc.->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)