[rmleonard]

in a flash of "duh...."

OSX server now uses clamAV (I had forgotten this)

class-osx-06:/usr/bin zimbra$ ./freshclam --version
ClamAV 0.87.1/685/Wed Jan 26 01:08:24 2005
class-osx-06:/usr/bin zimbra$ ./clamscan --version
ClamAV 0.87.1/685/Wed Jan 26 01:08:24 2005
class-osx-06:/usr/bin zimbra$ spamassassin --version
SpamAssassin version 3.0.1
running on Perl version 5.8.6

so again - to leverage a smaller install package (or not) - depending on the Security policies of your organization - clamAV and SpamAssassin are in OSX 10.4.4

I typically replace MySQL on my servers with version 5

10.4.4 comes with openldap 2.2.19 so that is a few revs behind

can anyone think of any other "System" level features that for security policy reasons should be left to OS level policy and not Application level policy?