Re: [Dovecot] POP3 protection
Odhiambo WASHINGTON:
Use a database and create an imap_enable field that is 1 if enabled and 0 if disabled and use this condition in the query.
Actually I am suggesting to let go SQL only for that and do it with a simple, plain text solution from within the configuration file. That can't be that difficult can it? It Postfix can do stuff with sender_checks and client_checks why using a database for a simple 0 or 1 :-)
thanks for your reply, Floor
Jos Chrispijn wrote:
Odhiambo WASHINGTON:
Use a database and create an imap_enable field that is 1 if enabled and 0 if disabled and use this condition in the query.
Actually I am suggesting to let go SQL only for that and do it with a simple, plain text solution from within the configuration file. That can't be that difficult can it? It Postfix can do stuff with sender_checks and client_checks why using a database for a simple 0 or 1 :-)
Actually, I'd suggest that forcing people to use a database in this instance is a good idea. Have you any idea how terribly the solution you proposed will scale? Imagine having 1000 users with that kind of configuration file...
-- Jasper Bryant-Greene Director Album Limited
jasper@albumltd.co.nz +64 21 708 334 / 0800 425 286 http://www.albumltd.co.nz/
Jasper Bryant-Greene schreef (02-12-06 19:58):
Actually, I'd suggest that forcing people to use a database in this instance is a good idea. Have you any idea how terribly the solution you proposed will scale? Imagine having 1000 users with that kind of configuration file...
Do not agree; this would be only an occasional use of this feature (who wants to force 1000 users to IMAP instead of POP3) and there could build in an feature in which you could put your 1000 users in:
# ----------------------------------------------------------------- # Logon processes # user = <username>,<password> # -----------------------------------------------------------------
use_textfile = protected_pop3.txt
with following content:
johndoe,another_secret_password mike,trouble_in_paradise
For something important as mail traffic I wouldn't use SQL at all. If I can't open a database (some sort of error), my entire mailfunction is limping and I don't like that at all... Sorry, my personal opinion.
Jos
Jos Chrispijn wrote: [snip]
who wants to force 1000 users to IMAP instead of POP3
Well, it's not that uncommon to have 100,000+ mailboxes. Surely 1% being restricted isn't an unreasonable estimate?
For something important as mail traffic I wouldn't use SQL at all. If I can't open a database (some sort of error), my entire mailfunction is limping and I don't like that at all... Sorry, my personal opinion.
Which is why, if your mail is really that important, you get a proper cluster of database servers. A text file is *not* going to scale to any sort of real volume.
-- Jasper Bryant-Greene Director Album Limited
jasper@albumltd.co.nz +64 21 708 334 / 0800 425 286 http://www.albumltd.co.nz/
Jasper Bryant-Greene schreef (02-12-06 20:51):
Which is why, if your mail is really that important, you get a proper cluster of database servers. A text file is *not* going to scale to any sort of real volume.
A proper cluster of database servers? I am allready happy that I have one (1) BSD server online! My real volume is about <= 80 usr max (of which one has to use webmail and the rest volunterarly).
cheers, Jos
Jos Chrispijn wrote:
Jasper Bryant-Greene schreef (02-12-06 20:51):
Which is why, if your mail is really that important, you get a proper cluster of database servers. A text file is *not* going to scale to any sort of real volume.
A proper cluster of database servers? I am allready happy that I have one (1) BSD server online! My real volume is about <= 80 usr max (of which one has to use webmail and the rest volunterarly).
Well then, some sort of small-scale flat-file database (DBM, BDB, etc) on the same machine as the mail could be fine for that sort of volume, and you can store the prefs in there.
-- Jasper Bryant-Greene Director Album Limited
jasper@albumltd.co.nz +64 21 708 334 / 0800 425 286 http://www.albumltd.co.nz/
* On 02/12/06 22:00 +0100, Jos Chrispijn wrote:
| Jasper Bryant-Greene schreef (02-12-06 20:51):
| >Which is why, if your mail is really that important, you get a proper
| >cluster of database servers. A text file is *not* going to scale to any
| >sort of real volume.
| >
| A proper cluster of database servers? I am allready happy that I have
| one (1) BSD server online!
| My real volume is about <= 80 usr max (of which one has to use webmail
| and the rest volunterarly).
|
| cheers,
| Jos
Okay, Jos is just starting up administering e-mail services. One server,
79 users max ;)
If you look at http://www.bsdstats.org/countries.php, item #16, you will
see what I mean. All those servers reported there are installed/managed
by me, and mail-wise, none of them has less than 100 users, each with
some weird requirement.
So, a database-driven setup still makes alot of sense to me, even for 79
users:
SQL>update users set pop3 = '0' where username = 'jos@domain.tld';
That is faster than
cd /some/directory/path
vi somefilename
add entries
restart daemon (perhaps)
With that single sql query, all servers contacting the DB for data
(directly or by replication) will already be aware of the restriction I've
put on pop3 service to user jos.
Over to you, Jos.
-Wash
DISCLAIMER: See http://www.wananchi.com/bms/terms.php
--
+======================================================================+
|\ _,,,---,,_ | Odhiambo Washington
participants (3)
-
Jasper Bryant-Greene
-
Jos Chrispijn
-
Odhiambo WASHINGTON