[Dovecot] Securing mailboxes and passwords
Daniel Aleksandersen
aleksandersen at runbox.no
Wed Feb 25 02:36:00 EET 2009
Sendt: Tue, 24 Feb 2009 19:11:43 -0500
Fra: Timo Sirainent
> On Wed, 2009-02-25 at 00:38 +0100, Daniel Aleksandersen wrote:
> > Sendt: Wed, 25 Feb 2009 00:29:17 +0100
> > Fra: Pascal Volk
> > > On 25.02.2009 00:25 Daniel Aleksandersen wrote:
> > > > The recepie assumes I have a group called secmail. I don’t. Am I supposed to create
> > > > a special group for this purpose?
> > >
> > > Yes, if the group does not exists, you have to create it. You could call
> > > it whatever you want.
> >
> > I created the group and set the permissions to deliver as described in the recepie. I
> > then added just about every user to that group.
>
> No, don't do that. The point of it was to make deliver executable only
> by your MTA, no one else. If other people were able to execute it, they
> could gain root privileges.
I started added other users just to troubleshoot the problems I have been havnig.
It did not work anyways, so I have removed other users from theat group.
The permissions still must be 777 or dovecot starts throwing permission errors.
I have tried a variety of other permissions including 677, 767, 776. All fail but 777.
--
Daniel Aleksandersen <aleksandersen at runbox.no>
More information about the dovecot
mailing list