On Tue, 2009-06-16 at 11:40 +0200, Steffen Kaiser wrote:
playing around with Dovecot's v1.2 ACLs I wondered about some things about the dovecot-acl files:
- They are created within the Maildirs, as described in http://wiki.dovecot.org/ACL.
But why? Shouldn't they belong to the CONTROL= directories? So it is more compatible with filesystem quota.
dovecot-acl-list's point is that all users see that file, but in some setups each user has separate control directories.
- They have 0666 permissions, but all other files (e.g. when I create a new mailbox) have 0660 permissions.
I think this was a bug that was fixed by http://hg.dovecot.org/dovecot-1.2/rev/c8bb7c18f17b
- When one removes all rights, the size of the file drops to zero. The wasted space is no great deal; but how much processing is wasted if such file is present? I mean, the log says that the files are opened very regularily. Would it help to remove zero-size files?
Empty dovecot-acl-list file is better for performance. If it didn't exist, Dovecot would rebuild it by going through all mailboxes.
It looks like Dovecot first writes a temp file (*.lock), then replaces the dovecot-acl file only, if no over quota happens. There is a problem, if dovecot-acl could be updated, but dovecot-acl-list could not. SETACL succeeds in this case, is this a problem?
This should help with it: http://hg.dovecot.org/dovecot-1.2/rev/8206c38856ff