[Dovecot] Login into other user's account // master user for non-master users // chroot to users.<user>
Timo Sirainen
tss at iki.fi
Sat Oct 26 18:18:16 EEST 2013
On 18.10.2013, at 11.31, Steffen Kaiser <skdovecot at smail.inf.fh-brs.de> wrote:
> Now, I came into thinking that it would be good in such case, if userB could authentificate as, say "sales*userB" - much like a master user - and ends in "sales"'s home, but with access permissions of "userB", well, like a chroot.
>
>
> Would it be an interesting feature to add to Dovecot's core?
>
>
> If I simulate "sales*userB" with password of userB and let the userdb return the home of sales, userB would gain "owner" privilegues of sales implicitly. So there seems to exist no workaround.
I think that’s already possible. If master user=sales and userB = login user, the ACLs would work the way you want. The problem is how to have different passwords for the sales master user for userA and userB. But that could be done by e.g. a checkpassword script.
More information about the dovecot
mailing list