On Thu, 2005-07-07 at 00:14 -0400, Matt Juszczak wrote:> We're running dovecot without a chroot (mail admin's request), but
we're
> running it as a non-priv'd user with proper firewall setup. Does this
> seem to be an OK and average setup? Or is it considered a MUST to chroot
> something like the imapd daemon, etc.
It's not a "must", and it's not really even a
"should" since it can have
problems. Dovecot's login process should be kept chrooted though, and it
is by default.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20050712/5f27569b/attachment-0001.bin>