Re: encryption of emails

To: debian-isp@lists.debian.org
Subject: Re: encryption of emails
From: wagnerc@plebeian.com (Chris Wagner)
Date: Sun, 13 Feb 2005 22:02:32 -0500
Message-id: <[🔎] 200502140302.j1E32WF19266@mail.goodnews.net>

At 06:54 PM 2/13/05 +0100, Walhalla wrote:
>> decent directory permissions. The default should already not allow other
>> users than root be allowed to read everyone's email, but if you're paranoid
>> beyond that, maybe grsec and SELinux fit your needs. Doing
>
>structure of the "homes ist /home/domain/users" - but the "admin" of 
>a web/domain has access to all subdirs :(

So the admin of /home/domain also has access to /home/otherdomain?  Why?  U
can make everything under /home mode 660 and have each domain dir a
different group.  That way only dirs and files from the admin's own group
will be visible.  Set the sticky bit on all the dirs so that the group
ownership will be propagated to all newly created files and dirs.  If that's
not enough u can jail each admin to his own /home/domain/.

Reply to:

Follow-Ups:
- Re: encryption of emails
  - From: "Walhalla" <walhalla@w-4.de>

Prev by Date: Re: encryption of emails UPDATE
Next by Date: PHP max_execution_time with Virtual Hosts Question
Previous by thread: Re: encryption of emails
Next by thread: Re: encryption of emails
Index(es):
- Date
- Thread