On Mon, May 15, 2023 at 12:14:03PM +0100, Martin A. Brooks wrote: > > But that's quite beside the point. exim.conf should be world readable > > for the sake of users reading it with cat, less or emacs, to figure > > out what the configuration is. Anything else amounts to security by > > obscurity.
> Given it can contain secrets such as database credentials, that's obviously > an incorrect statement. Have secrets in a separate file? -- Ian -- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## exim-users-unsubscr...@lists.exim.org ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
