On Thu, Oct 14, 2010 at 03:38:04PM +0100, Ed W wrote:
On 14/10/2010 15:04, Denny Lin wrote:
I was wondering if it would be possible to read the username/password from a Dovecot config file (like userdb/passdb/quota/expire) instead of using my.cnf.
In that case I think just creating a script with the password in it, which is itself called from login process does what you need? (As Timo just said)
In Dovecot 2 there is a move to splitting the config files up to a greater extent, so I think it can be seen really as an extension of that if you have one more file knocking around?
However, do still remember that you should almost certainly create a separate database user for this task - this user can then be locked down (eg only insert access to a single table) and in that way there is a limit to the damage they could do even if the password were compromised?
I like people who think about security though - please consider writing up your final solution on that page of the wiki so that there is a "best practice" solution on there?
Sorry for the late reply. I've been very busy recently (filling out university applications). In the end I decided to use Timo's solution as it seems like the best one.
Thanks for all the advice and suggestions.
-- Denny Lin