[Dovecot] ACL changes not respected by already loged in clients
Sascha Wilde
wilde at intevation.de
Fri Mar 6 11:52:10 EET 2009
Steffen Kaiser <skdovecot at smail.inf.fh-brs.de> writes:
> On Thu, 5 Mar 2009, Sascha Wilde wrote:
>
>> I think ACL changes should take immediate effect, or at least should be
>> re-checked in reasonable intervals (which imo shouldn't exceed a few
>> seconds).
>
> Although I see the problem in your scenario, it is rather uncommon to
> recalculate ACLs for already running processes, esp. not in intervals of
> seconds.
When you say "uncommon", which references are you referring to?
There are not too many other imap server implementations implementing
this features (imap acl and shared user mailboxes). I only tested the
(widely used) cyrus imapd, which promotes ACL changes immediately.
> Did you tried it in Windows or Unix?
Afaik dovecot doesn't even run on Windows systems.
> Maybe, some "ACL push" plugin would help, that pushes ACL changes to
> processes that are logged in currently.
This might be a good way to implement things efficiently but before
doing so I would prefer to evaluate if simply rechecking the relevant
ACLs on each IMAP command has such a big performance impact that this
kind of optimization is really needed.
cheers
sascha
--
Sascha Wilde OpenPGP key: 4BB86568
http://www.intevation.de/~wilde/ http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück; AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 188 bytes
Desc: not available
Url : http://dovecot.org/pipermail/dovecot/attachments/20090306/f4307644/attachment.bin
More information about the dovecot
mailing list