CSS:
> Hello,
>
> I was just digging through the documentation on running various
> postfix processes chrooted. I found the recommendation that at
> least the network-facing daemons be chrooted, but it appears that
> almost everything in master.cf can be. What's the current BCP for
> what to chroot and what not to chroot?
If a daemon can be chrooted, then the manpage will say so. That
does not mean that chroot is a good idea for every Postfix
configuration. If you are unsure if chroot is useful for you, then
it probably isn't, and you can save yourself the pain.
Wietse
