Postfix : root and system user authentication
John Stoffel
john at stoffel.org
Wed Mar 15 17:57:40 UTC 2023
>>>>> "dovecot" == dovecot <dovecot at ptld.com> writes:
> Me personally, this is why i prefer to use virtual users stored in a
> database for email and never use linux users. I have ultimate
> control over what users can be authenticated or receive email. I can
> add flags to the DB query to fail an otherwise valid user. Why would
> i want a root@ email address? Why would i want my system to accept
> email for httpd from some stranger on the internet? Why would i want
> to have to create a linux user at the OS level just to add a
> mailbox?
This is 110% agree. It's just so simple to use purely virtual users,
even if you are pulling the login info from LDAP/AD for real users.
But you don't need to allow *any* logins to the dovecot or postfix
server using local logins at all. It's just better security.
John
More information about the dovecot
mailing list