<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-15">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p><br>
</p>
<div class="moz-cite-prefix">On 11.7.2019 20.43, HTMLServices.it via
dovecot wrote:<br>
</div>
<blockquote type="cite"
cite="mid:16ddd5f5-fa4f-46ba-9258-f2b551319020@htmlservices.it">
<meta http-equiv="content-type" content="text/html;
charset=ISO-8859-15">
Hello everyone<br>
<p><span>sorry i'm not very experienced and also my english</span><span
class="to"><span><span><br>
</span></span></span></p>
I installed a centos 7 server with ispconfig postfix dovecot
2.2.36 and roundcube, this server is only a mail archive, so my
need is that ALL the mailboxes are read-only on roundcube/imap and
any user must NOT delete the messages. ... so I configured
dovecot's ALC following the guide <a
class="moz-txt-link-rfc2396E"
href="https://wiki2.dovecot.org/ACL" moz-do-not-send="true">"https://wiki2.dovecot.org/ACL"</a>
I think I did everything correctly and I don't get errors but
entering the webmail roundcube I CAN DELETE MESSAGES ..... it
seems that the acl have no effect ....<br>
<br>
<br>
</blockquote>
<p>snip<br>
</p>
<blockquote type="cite"
cite="mid:16ddd5f5-fa4f-46ba-9258-f2b551319020@htmlservices.it">
if I see the line "Info: User <a class="moz-txt-link-abbreviated"
href="mailto:test@test.com" moz-do-not-send="true">test@test.com</a>
has rights: lookup read" it seems that the ACL (lookup and read)
are correctly applied,<br>
<div>but as I was saying above, entering the user <a
class="moz-txt-link-abbreviated" href="mailto:test@test.com"
moz-do-not-send="true">test@test.com</a> on the webmail, I can
do everything I want to also delete the e-mails ..... these are
days I try to understand but I don't understand what I'm wrong
and how to solve .... <br>
</div>
<div>thank you all in advance</div>
</blockquote>
<p>This is because the rules are applies as "owner", and not as
<a class="moz-txt-link-rfc2396E" href="mailto:test@test.com">"test@test.com"</a>. If you want to prevent <a class="moz-txt-link-abbreviated" href="mailto:test@test.com">test@test.com</a> from
deleting their mail, you need to create
/var/vmail/test.com/test/Maildir/dovecot-acl with</p>
<p>* owner lr<br>
</p>
<p>Aki<br>
</p>
<p><br>
</p>
<p><br>
</p>
</body>
</html>