Matthew Brown
2018-Jan-24 22:35 UTC
777 permissions on mailbox, subfolders subfiles new emails
What I have to change, so dovecot on new email create, sets chmod 777 on Mailbox and all subfolders subfiles all new emails/sent emails etc. -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20180125/276846fa/attachment.html>
Nikolai Lusan
2018-Jan-25 03:09 UTC
777 permissions on mailbox, subfolders subfiles new emails
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi, On Thu, 2018-01-25 at 00:35 +0200, Matthew Brown wrote:> What I have to change, so dovecot on new email create, sets chmod 777 on > Mailbox and all subfolders subfiles all new emails/sent emails etc.This is a really bad idea. It is possible to setup in dovecot if you're using dovecot as your LDA. The only reason I can think of for anything close to this is virtual mailboxes ... and even then I set things up with a specific user to own the files and set them as 770 for the directories and 660 for the files. With that setup dovecot limits users to their own mail directories with values returned via the passdb/userdb. As a general rule anything on a *nix system that is chmod 777 is to be avoided - it's a massive security risk. - -- Nikolai Lusan <nikolai at lusan.id.au> -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAlppSnQACgkQ4ZaDRV2V L6To/BAAjKeTi6reaRrcSClKm6PEbgewtF1KvHgO1zr+hv9T2XOnVGFSajeFwSXR rDSXGQ/H9s97KDGZB4VKxuSKZsDRFkF9u7ILttuXOgj8kG8XZl4sqg/w0FIrTC1K GD8T0TZWSJGFIzrLXTpgzoO1LeQXIuXgnZIMbcaneCHKZc1do/GwQ4DEFVdUnxRJ n+76nbs8RdQwZKGXYGGTU/BXPniTSW1pmTFxnlruxE7fuWBYeEyQGQRke/CT2rFF ET+d7LlV4Nds6eGjalyf7m5tCNS87Zm78xegANuMNaMdzPI8NlbnFO82bAlC7kP/ WkCFSfhJL3s9daEnMWT/dxY2lNKy3kTyOZssXM6ROkNhOFRipNwRr77tO6qzu8l9 pvaVxr8a0pMVQwxGAyW84vS9GWmeMNMMiY0k7XdPSBS/6CVlQm8eUhnDo6GFZoH9 Tbn4XNkEKysbZEjImjXb6eQpRwQLniIULjeyoX8aqmN2sh4kDndLJwjxpz7Jd6v2 j2tuS7+79G9qU8dqpCSwzvWYTteOLJeqJLy6s5F+zf8FHGLcHdNasoo+/Sdzg4+E tZm31wp7iQdzKMwbOnRk9FceYXbb9WjxI1QY+7U11Rx25y44UDPzUYYOL+ZoWOXJ zAr/F9fhUP/u8AubOgOn6BLaguiWcFK0g6HhCqDkVAUibEMzC+0=YUek -----END PGP SIGNATURE-----