Lloyd Zusman writes:
Exactly.
And thanks to all of you for your feedback.
The problem that I'm trying to solve (or at least brainstorm about) is to see if there is a way to keep users who might somehow get root from reading other users' email ... or at least to make it extremely difficult.
SELinux might be able to do that.
Of course, you will first have to figure out the correct SELinux profile for all Courier daemons and files. I haven't looked at SELinux myself and don't know how to write an SELinux profile myself, but eventually I suppose I'll get to it.
pgpMieXiTeCiw.pgp
Description: PGP signature
