Installed Gentoo! (Hardened Infantile Mail)

I have installed a new Gentoo hardened box and migrated the old Debian mail servers configuration and spool to it. This allows me to use Gentoo's unique hardening features that are easy to apply to the whole system. The server is tested as working with SELinux enforcing with little auditing required.

One can hope that the new server stands the test of time.

I have a plan to write a script so the server shreds every mail item that is more than 7 days old. Giving the server some amnesia seems like a good idea, and follows well in the steps of the XMPP service which is optimized not to save certain information to disk. It gives users a good level of privacy.

