[ < ] [ > ]   [ << ] [ Up ] [ >> ]         [Top] [Contents] [Index] [ ? ]

5.2.6 Security Settings

The following options control various security settings.

Option: allow-local-mta yes-or-no
For security reasons, this option is set to `no', but the `yes' value enables the `local-mta' keyword (or `--local-mta' command line option), so if you want to use a local mail server, which works on standard input and output, a supervisor must set this option to `yes'. The option is available only in system configuration file.

Option: drop-unknown-user yes-or-no
This option drops an unknown user, i.e. a client which has not been verified by IDENT service. Value `no' is the default.

Option: user-notprivileged username
For security reasons, it is recommended to create an unprivileged user, which the server runs as most of the time, when doing unprivileged operations. The option is available only in system configuration file. For example:

 
user-notprivileged "anubis.unprivileged"

Caution: Create a user account named `anubis.unprivileged' in the `/etc/passwd', if necessary. Add this user name also to the `/etc/anubis.allow', if using GNU Anubis with PAM support.

Option: rule-priority value

This statement defines the order of execution of the system and user RULE sections (See section 6. The Rule System, for detailed description). It is available only in system configuration file.

system
The system section is executed first, then the user section is executed.

user
The user section is executed first, next the system section is executed.

system-only
Only the system RULE section is executed.

user-only
Only the user RULE section is executed.

Option: control-priority value

Sets the order of processing the CONTROL sections. The option is available only in system configuration file. Its possible values are:

system
The system CONTROL section is processed first. Notice, that this means that the user may override the system settings in his configuration file. This is the default setting.

user
The user CONTROL section is processed first. Thus, the system-wide settings always override the user private settings.

[ < ] [ > ]   [ << ] [ Up ] [ >> ]         [Top] [Contents] [Index] [ ? ]

This document was generated by Wojciech Polak on December, 18 2004 using texi2html