|
|
On Thu, 30 Sep 2004, Simon Richter wrote:
> > > the attached patch adds the session-wide authentication data to each
> > > message received over LMTP if there is no other authentication info.
> > > This allows the LMTP client to omit the "AUTH=postman" argument to the
> > > MAIL FROM command, which makes it possible to receive mail for a shared
> > > mailbox directly from postfix over an LMTP connection.
>
> > Hmm... I don't really understand why you need this patch. One does *not*
> > need to add "AUTH=postman" to MAIL FROM. I have just tested, and as long as
> > I authorize myself in the SASL layer as "postman", all deliveries seem to
> > work just fine (to folders with the "anyone" post ACL set, that is).
>
> Yes, that is the point: Deliveries are done as an anonymous user, hence
> the only way to allow deliveries to non-user mailboxes is to give
> everyone posting privilege. However, when I do that, users can
> accidentally drop messages into the mailing list archive folders, and
> there is no way for them to delete them, as they don't have delete
> permission.
>
> With this patch, it suffices to set "lp" permissions for "postman" on a
> folder to allow posting via local lmtp, which is only accessible for the
> postfix user on my system.
What about the usual restriction that only LMTP admins (i.e. in admins or
lmtp_admins on imapd.conf) can authorize against LMTP?
--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
|
|