Sam Lawrance wrote: > I'm just curious here... would the mac_seeotheruids policy help in > obscuring the value of any information collected by a spy process? Yes. It would mean that the spy could steal an SSL certificate, but not know whose SSL certificate it was. :-) Colin Percival