[exim-dev] [Bug 3122] confidentiality of data-at-rest

Góra strony
Delete this message
Reply to this message
Autor: Exim Bugzilla
Data:  
Dla: exim-dev
Temat: [exim-dev] [Bug 3122] confidentiality of data-at-rest
https://bugs.exim.org/show_bug.cgi?id=3122

Jasen Betts <jasen@???> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jasen@???


--- Comment #3 from Jasen Betts <jasen@???> ---
> Only exim needs access to the spool files


This is the problem. unlike with imap there is no external agent that can
unlock a decryption key during their login.

Exim always needs access to the spool content. If exim can do it so can root.
so you may as well just stay with unix file access permissions protecting the
spool.

There is also an argument to be made that spool files are "in processing" and
not "at rest"

--
You are receiving this mail because:
You are on the CC list for the bug.

--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-dev.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-dev-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/