Just got an interesting project...
Eric "Shubes"
plug at shubes.net
Thu Oct 5 08:37:32 MST 2006
George Toft wrote:
> Requirements:
> 1. Deleted files (say, qmail messages after pickup) are shredded upon
> deletion. Immediately upon delete. Since an application is performing
> the delete, I must assume "rm" is not being issued, so I can't
> substitute "shred" in its place.
>
> 2. Files owned by vpopmail:vchkpw can only be read by said user:group -
> this includes root. We need to lock root (and every other user) out of
> the messages.
>
> 3. Encrypted file system to defend against physical theft.
>
>
> #3 is easy.
>
> #2 sounds like a job for SELinux. Alternatives are welcome :)
>
> What about #1? Any ideas?
>
Change the source and rebuild? Should be fairly easy with qmail as it's
distributed as source. Other applications might not be as easy.
--
-Eric 'shubes'
More information about the PLUG-discuss
mailing list