Hi,
Is the ACL system any usefull for daemons that are ALL chainrooted?
That is, all the the publicaly accessible daemons are chrooted (apache, apache-ssl, postfix, and nsd [name server] ). The ACL system requires that root is essentially crippled which is no good for cron jobs (logrotate, etc..)
ALL of the chroot restrictions are on and daemons running non-root. Is there really any advantage running the ACL system?
- Adam
PS. Local users are 100% trusted