[Dovecot] Shared mailboxes basics
Timo Sirainen
tss at iki.fi
Fri Mar 19 23:19:52 EET 2010
On Fri, 2010-03-19 at 22:09 +0100, Thomas Hummel wrote:
> On Fri, Mar 19, 2010 at 09:11:32PM +0200, Timo Sirainen wrote:
>
> Thanks for your answer Timo.
>
> > > a) I wonder if TB even support the SETACL command since I don't see how I can
> > > modify an ACL through the TB UI.
> >
> > It doesn't.
>
> Ouch! What known UA does support it ?
Mulberry, Kolab, some webmail plugins maybe.
> What's the point of supporting only GETACL ?
I guess it just shows nicely what mailboxes are shared.
> I guess this means that if users
> run this client, shared mailboxes have to be managed by an administrator, right
> ?
Or some custom web interface.
> > Yes, they're basically the same. But in that context "easier for virtual
> > users" means "easier if all your users use the same uid", since most
> > people use the same uid for virtual users.. (I don't think wiki confuses
> > these two things?)
>
> Ok, but I still don't quite get it : if you use the same UID, doesn't this
> somehow equates giving something like 777 modes in the system user case ? (I
> mean on an OS level, problems related to such loose permission are the same
> and, if in 777, permissions are no longer a problem for dovecot) ?
Pretty much. But 0777 permissions are somewhat worse for security than
just giving a single shared uid 0700 permissions. :) So there's nothing
magical about virtual users making this easier. It's just that most
people wouldn't like using 0777/0666 permissions for all mails..
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20100319/02954807/attachment.bin
More information about the dovecot
mailing list