[dovecot] Re: inetd/xinetd/tcpserver support
Marcus Rueckert
rueckert at informatik.uni-rostock.de
Thu Mar 20 13:25:17 EET 2003
On 2003-03-19 20:30:53 -0500, Charlie Brady wrote:
> Privilege separation is a very good thing. Is there any more detailed
> documentation of how you have done yours than
> http://dovecot.procontrol.fi/doc/design.txt?
>
> You'll see that in the setup I've detailed above I am only using the
> "imap" binary from dovecot. I'm happy with the division of labour
> which
> has tcpserver doing network connection control, imapfront-auth+cvm
> doing
> authentication and uid switching, and imap doing mailbox access and
> IMAp
> protocol implementation. I expect to add stunnel doing TLS to that mix
> tomorrow.
>
> Can you provide any reasons why I should use your imap-master,
> imap-auth
> and imap-login proceses rather than my mix'n'match setup? I'm
> confident
> that my setup has the simple, secure, reliable characteristics that I
> need, whereas I don't have the same confidence in your process set -
> it
> seems unnecessarily complex to me.
>
> > Only thing I'm wondering is if any of the TCP wrappers care about
> > the
> > created child processes? The master process would have to stay alive
> > after the connection that created it dies.
>
> In general they will, as they will do connection counting. This is
> handled
> in my setup above, as each process execs the following one: tcpserver
> forks, and the child execs "imapfront-auth", which then authenticates
> and
> execs "imap".
hi
first of all i want to paste this
On Wed, 19 Mar 2003, Timo Sirainen wrote:
( Message-Id: <1048083821.850.30.camel at hurina> )
> Only solution for now is to set /var/mail world-writable and sticky.
> Another way would be to use more privileged process for handling lock
> files. Some programs use setuid or setgid binary for that. I was
> thinking that I'd let imap process request the locks from master
> process. That would also allow overriding stale lock files created by
> other users with shared mailboxes.
another point would be no reusing. you restart all processes on each
connection. if i count correctly:
1 tcpserver + 1 imapauth + 1 imap binary per connection
forked on every connect.
iirc correctly cras implemented resuing of the already spawned
processes. maybe a reason.
isnt there a lib offering tcp-server like functionality?
just my pi cents
darix
--
irssi - the client of the smart and beautiful people
http://www.irssi.de/
More information about the dovecot
mailing list