15.12.2024 16:44, Tomasz Pala via Postfix-users wrote:
..
In case of postfix, having magnitude of options, hardened by-default
service, or at least hardening comments ("You might uncomment this if
not using that") would be PITA for sure - but every journey starts from
the first step.
I'd love to give it a try (actually I did, see my other email, - without
noticing *this* your email).
Actually postfix is one of few services I got not "sanitized", so I've
spawned entire dedicated container instead...
One scenario I've hit is running with NoNewPrivileges= (i.e. noSUID) has
broken maildrop (there's an SGID helper), which I got used so rarely
that haven't noticed for some time.
Isn't the only reason maldrop is setgid is to be able to access /var/mail/$USER
?
Which is a sort of legacy these days too, and is solved entirely by
switching to ~/Maildir/ or other means to store email?
It fails when there are multiple coöperating processes doing the
logging. Precisely because a stream socket is chosen.
But /dev/log in systemd is datagram socket...
Hm. Is this yet another myth we're facing here?
One is about chroot which's been with us for 25 years, another is
systemd-journald unreliability..
Thanks,
/mjt
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
