Yes, I know that this is very nearly a moot point on a well-configured and secure system. But I was just doing some "what if" thinking, and this hypothetical problem came to mind. I then thought I'd pose the question here to see if anyone else has thought about it, as well.
Moot point the other way. If they can get local root they can undo pretty much everything you can do. Encrypt the traffic the instant it comes into the system... and they can put in a proxy in front of the SMTP daemon or on the client-facing side of IMAP/POP3. If you encrypt it via a filter they can put it behind a "T" that copies every message elsewhere. They can access any unencrypted file system and many encrypted ones. They can find symmetric cipher keys.
On the other hand this threat model assumes competent attackers. If they're script kiddies it may be sufficient to just lock down the mail queue, e.g. with SELinux.
Bear
------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
