[dovecot-cvs] dovecot dovecot-example.conf,1.245,1.246

tss at dovecot.org tss at dovecot.org
Thu Mar 22 02:06:26 EET 2007


Update of /var/lib/cvs/dovecot
In directory talvi:/tmp/cvs-serv26941

Modified Files:
	dovecot-example.conf 
Log Message:
Removed security warnings from auth-master socket. They're not actually
true. The clients can only look up userdb data, which is practically the
same thing as what they can find from /etc/passwd (with system users of
course).



Index: dovecot-example.conf
===================================================================
RCS file: /var/lib/cvs/dovecot/dovecot-example.conf,v
retrieving revision 1.245
retrieving revision 1.246
diff -u -d -r1.245 -r1.246
--- dovecot-example.conf	21 Mar 2007 20:12:59 -0000	1.245
+++ dovecot-example.conf	22 Mar 2007 00:06:24 -0000	1.246
@@ -973,11 +973,9 @@
   # It's possible to export the authentication interface to other programs:
   #socket listen {
     #master {
-      # Master socket is typically used to give Dovecot's local delivery
-      # agent access to userdb so it can find mailbox locations. It can
-      # however also be used to disturb regular user authentications.
-      # WARNING: Giving untrusted users access to master socket may be a 
-      # security risk, don't give too wide permissions to it!
+      # Master socket provides access to userdb information. It's typically
+      # used to give Dovecot's local delivery agent access to userdb so it
+      # can find mailbox locations.
       #path = /var/run/dovecot/auth-master
       #mode = 0600
       # Default user/group is the one who started dovecot-auth (root)
@@ -995,7 +993,7 @@
 }
 
 # If you wish to use another authentication server than dovecot-auth, you can
-# use connect sockets. They assumed to be already running, Dovecot's master
+# use connect sockets. They are assumed to be already running, Dovecot's master
 # process only tries to connect to them. They don't need any other settings
 # than the path for the master socket, as the configuration is done elsewhere.
 # Note that the client sockets must exist in the login_dir.



More information about the dovecot-cvs mailing list