Skip to Content
Exim: The Mail Transfer Agent
book

Exim: The Mail Transfer Agent

by Philip Hazel
July 2001
Intermediate to advanced
640 pages
18h 9m
English
O'Reilly Media, Inc.
Content preview from Exim: The Mail Transfer Agent

Chapter 19. Miscellany

This chapter collects a number of items that do not fit naturally into the other chapters, but are too small to warrant individual chapters of their own.

Security Issues

We use the word “security” to cover all aspects of the operation of Exim that are concerned with letting it perform privileged actions not permitted to ordinary user programs. It also covers aspects concerned with keeping the messages and other data it handles secure. There are three aspects to this:

  • An MTA requires privilege to carry out the full range of expected functions, but it must take care to prevent its privilege from being abused. If possible, it should also relinquish privilege whenever it does not need it.

  • An MTA must keep the files containing the messages it handles from being accessed by ordinary user programs. Under some countries’ data protection legislation, messages and even mail logs are considered personal data, so it must be processed with appropriate care.

  • An MTA must provide extra facilities for its administrators (for example, the ability to delete a message on the queue) that are safe from abuse by ordinary users.

Security is an important issue because breaches of security can lead to serious consequences. The full details of the security aspects of Exim are quite involved and allow for some variation in the way it is configured. However, there are some “standard” recommendations you should normally follow, unless you are sure you understand the consequences of doing otherwise. ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

qmail

qmail

John Levine
What Successful Project Managers Do

What Successful Project Managers Do

W. Scott Cameron, Jeffrey S. Russell, Edward J. Hoffman, Alexander Laufer
Workforce Ecosystem Orchestration: A Strategic Framework

Workforce Ecosystem Orchestration: A Strategic Framework

Elizabeth J. Altman, David Kiron, Robin Jones, Susan Cantrell, Steven Hatfield

Publisher Resources

ISBN: 0596000987Errata Page