Manualshelf

HP-UX Mailing Solutions White Paper

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 ONC and NFS Software
31323334353637383940
autolearn=no version=3.2.4
Received: (from root@localhost)
by itan.hp.com (@(#)Sendmail version 8.13.3 - Revision 1.000 - 1st August,2006/8.13.3) id
m7M6KfRZ025089
for abtuser; Fri, 22 Aug 2008 11:50:41 +0530 (IST)
Date: Fri, 22 Aug 2008 11:50:41 +0530 (IST)
From: root@itan.hp.com
Message-Id: <200808220620.m7M6KfRZ025089@itan.hp.com>
To: abtuser@itan.hp.com
Subject: improved
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
spamm
Secure Mailing Solution
This section lists the security features available in Sendmail 8.13.3 and discusses the procedure
to configure Sendmail for SAFER support.
Following are the security features available with Sendmail 8.13.3:
TLS/SSL support
CyrusSASL support
SAFER support
For information on TLS/SSL support and CyrusSASL support, see the Sendmail 8.13.3 Securing
Mailing Solution white paper available at http://www.docs.hp.com. This section discusses the
SAFER support in detail.
SAFER Support
This section discusses “compartments”, which is the important concept related to SAFER and
also discusses the compartment architecture. It discusses the procedure to run a Sendmail process
in a compartment and to verify the compartment configuration.
Compartments
Compartments are a method of isolating components of a system from one another. When
configured, they can be an effective method to safeguard the HP-UX system and the data that
resides on it. Compartments isolate processes or subjects, from each other and also from resources
or objects. Therefore, by running the mail server on a safe compartment, users can safeguard
other parts of the system from being infected by viruses that are transmitted through mails.
Compartment Architecture
Compartments isolate a process and its child processes within a system. Figure 23 illustrates a
parent process that spawns a number of handler processes that need to access various parts of
the system. The compartments on the system are configured so that the processes can access the
resources they need.
Secure Mailing Solution 39