thank you. I believe I have found a workable solution for now. I am using acls within the cur/new/tmp directories of queue1. group2 can't get in the front door of that maildir folder, so those file system acls don't hurt anything.
I guess acls got me into this mess, so they should get me out of it too. :-)
thank you
Tom Lieuallen
Tom Talpey wrote:
On 12/20/2010 6:42 PM, Tom Lieuallen wrote:
I have a centrally located shared imap folder location. We have several maildir folders with different file system permissions. ... Is there any way to configure dovecot such that if a person moves or copies a message to another imap folder, it creates a new file instead of doing a link or mv or whatever?
http://wiki2.dovecot.org/MailLocation/Maildir?highlight=%28maildir_copy_with...
The default for maildir_copy_with_hardlinks is "yes", so you may want to turn it off manually. But, I'm not sure you really want to do this. Dovecot acls can protect the files from imap access, and exporting them via a raw filesystem seems counterproductive to your security goal. Also, performance will suffer.