23 Jan
2010
23 Jan
'10
2:19 p.m.
On 23.01.10 13:51, Timo Sirainen wrote:
- Completely untrusted user for login processes.
- Slightly more trusted internal Dovecot user.
So "dovecot" could be reused for 2. And it would no longer be a mortal sin to use dovecot user for owning mail files. For 1. there would be a new user. I'd use "dovelogin", but apparently tools still don't much like usernames that are longer than 8 characters.
You could use "dovecotl" (lower-case "l" as the eighth character) which as a nice Aztec ring. ;-) Seriously, I'd suggest you make both users configurable, either by providing a compile time option for "configure" or by adding runtime options to dovecot.conf. That would allow each administrator to chose users according to local regulations.
-Ralph