Is there a straightforward way to disallow the deletion of all IMAP mailboxes? I have a user who's deleted an important IMAP mailbox and I'm now recovering a recent copy from the backup. But I'd rather just blanket disallow all folder deletions. The user is using Thunderbird and this has happened more than once so I suspect Tbird is willing to let a folder get deleted too easily. Perhaps there was a delay in the confirmation dialog and the user clicked ahead and confirmed something he shouldn't have. I'm looking at <http://wiki.dovecot.org/ACL> and it looks like I should be able to use a group override to disallow "x" (mailbox delete) but the page says that groups aren't implemented, so I don't know how one says that nobody can do this for any mailbox. I'm using 1.2.rc15 from CentOS 5 (RHEL5 equivalent).
On Monday, May 19, 2008 4:07 PM -0700 Kenneth Porter <shiva at sewingwitch.com> wrote:> I'm using 1.2.rc15 from CentOS 5 (RHEL5 equivalent).I think I'm misinterpreting the CentOS package's version number. The package is listed as: dovecot-1.0-1.2.rc15.el5.src.rpm I think that means 1.0 rc15 and RPM packaging version 1.2.>From the package changelog:* Fri Dec 22 2006 Tomas Janousek <tjanouse at redhat.com> - 1.0-1.2.rc15 - reenabled GSSAPI (#220582) * Tue Nov 21 2006 Petr Rockai <prockai at redhat.com> - 1.0-1.rc15 - update to latest upstream, fixes a few bugs, plus a security vulnerability (#216510, CVE-2006-5973)
On May 20, 2008, at 2:07 AM, Kenneth Porter wrote:> Is there a straightforward way to disallow the deletion of all IMAP > mailboxes? > > I have a user who's deleted an important IMAP mailbox and I'm now > recovering a recent copy from the backup. But I'd rather just > blanket disallow all folder deletions. > > The user is using Thunderbird and this has happened more than once > so I suspect Tbird is willing to let a folder get deleted too > easily. Perhaps there was a delay in the confirmation dialog and the > user clicked ahead and confirmed something he shouldn't have. > > I'm looking at <http://wiki.dovecot.org/ACL> and it looks like I > should be able to use a group override to disallow "x" (mailbox > delete) but the page says that groups aren't implemented, so I don't > know how one says that nobody can do this for any mailbox.Using global ACLs gets you closer at least. You can define: acl = vfile:/etc/dovecot/acls Then having /etc/dovecot/acls/.DEFAULT probably does something.. But I don't remember if it applies to all mailboxes or just those on the root level or what. I should look into this some day and make all of them possible. :) -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 194 bytes Desc: This is a digitally signed message part URL: <http://dovecot.org/pipermail/dovecot/attachments/20080520/121f1402/attachment-0002.bin>
On 5/19/2008 Kenneth Porter wrote:> I have a user who's deleted an important IMAP mailbox and I'm now > recovering a recent copy from the backup. But I'd rather just blanket > disallow all folder deletions.Thats pretty drastic - I'd have a rebellion on my hands if I tried that here. There's only so much you can do to protect people from their own stupidity. I'd say this is one thing you do NOT want to do - otherwise, you're gonna have people bugging you all the time to delete folders for them.> I'm using 1.2.rc15 from CentOS 5 (RHEL5 equivalent).Actually, that would be 1.0rc15 - and it is way old, time to upgrade... atrpms.net has current versions...
on 5-19-2008 4:07 PM Kenneth Porter spake the following:> Is there a straightforward way to disallow the deletion of all IMAP > mailboxes? > > I have a user who's deleted an important IMAP mailbox and I'm now > recovering a recent copy from the backup. But I'd rather just blanket > disallow all folder deletions. > > The user is using Thunderbird and this has happened more than once so I > suspect Tbird is willing to let a folder get deleted too easily. Perhaps > there was a delay in the confirmation dialog and the user clicked ahead > and confirmed something he shouldn't have. >You mean thunderbird LET a user do something stupid? Even after asking" Are you sure"? Go figure! -- MailScanner is like deodorant... You hope everybody uses it, and you notice quickly if they don't!!!! -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature URL: <http://dovecot.org/pipermail/dovecot/attachments/20080520/580f4264/attachment-0002.bin>
It might be nice to have a mode that disallows deletion of *non-empty* folders. In order for a user to delete the folder, the folder must first be emptied and purged. Alas, deleting messages can be undone, but folders can't be, and the UI of a client doesn't necessarily make this obvious.
Timo Sirainen wrote:> On May 20, 2008, at 2:07 AM, Kenneth Porter wrote: > >> Is there a straightforward way to disallow the deletion of all IMAP >> mailboxes? >> >> I have a user who's deleted an important IMAP mailbox and I'm now >> recovering a recent copy from the backup. But I'd rather just blanket >> disallow all folder deletions. >> >> The user is using Thunderbird and this has happened more than once so >> I suspect Tbird is willing to let a folder get deleted too easily. >> Perhaps there was a delay in the confirmation dialog and the user >> clicked ahead and confirmed something he shouldn't have. >> >> I'm looking at <http://wiki.dovecot.org/ACL> and it looks like I >> should be able to use a group override to disallow "x" (mailbox >> delete) but the page says that groups aren't implemented, so I don't >> know how one says that nobody can do this for any mailbox. > > Using global ACLs gets you closer at least. You can define: > > acl = vfile:/etc/dovecot/acls > > Then having /etc/dovecot/acls/.DEFAULT probably does something.. But I > don't remember if it applies to all mailboxes or just those on the > root level or what. I should look into this some day and make all of > them possible. :)This actually may have a real benefit to some specialty folders - such as junk/nojunk folders that are looked for by a scanning re-classifier. Can you give an example of how to make...Inbox/Junk non-deletable (or even better, update the wiki)? -- Daniel