similar to: question dovecot Inheritance global acl vs userfolder acl

Hello, We have upgraded from Dovecot 2.2.13 to 2.2.15 and we are using global ACL file. The content of the ACL file is as following: * owner r INBOX owner lrwstipekxa INBOX/* owner lrwstipekxa user owner rwstipekxa user/* owner rwstipekxa This worked fine but after update any user cannot see any folders from under the INBOX, also they cannot create any new folders. Error into the logs are

Hello, Thanks, yes the global-acls file is the one I'm refering to and I created it before all this started. Yes, the users can both login properly and can access there own inboxes. Thanks. Dave. On 4/26/20, Markus Winkler <ml at irmawi.de> wrote: > Hi Dave, > > thanks for the information. > > On 26.04.20 18:37, David Mehler wrote: >> In answer to your questions

I'm trying to set up global ACLs. I have the following in the config file: > # acl > mail_plugins = acl > > protocol imap { > mail_plugins = $mail_plugins imap_acl > } > > plugin { > # Without global ACLs: > #acl = vfile > > # With global ACL files in /etc/dovecot/dovecot-acls file (v2.2.11+): > #acl = vfile:/etc/dovecot/dovecot-acl > acl

Global ACLs are intended to apply to a few mailboxes for all users. For example you could have a master user called "spam" that would have access to each user's "spam" mailbox, but nothing else. Global ACLs are kind of ugly. A mailbox's ACL is found from exactly the same name as what the mailbox's virtual name is. So for example if you have namespace { separator

Dear list, I am using dovecot 1.0.15 on Debian Lenny. I have a public folder, I use ACL / vfile (without public ACL), and I use maildir / vmail. Now I have two questions: 1) http://wiki.dovecot.org/ACL states: "Mailboxes in public namespaces don't have owners, so by default no-one can access them." The same document, when explaining the meaning of the k flag in the ACLs, states:

Hello, Thank you for your response. In answer to your questions I made a file global-acls containing: # cat global-acls Public/general user=user1 at domain.com lrwstipekxa Public/TestFolder user=user1 at domain.com lrwstipekxa Public/general user=user1 at domain2.com lrwstipekxa Public/TestFolder user=user1 at domain2.com lrwstipekxa Here's the ls -la output: #ls -la

Hello! I'm sorry, but i don't really understand it the way it is written in the wiki, so i'm trying my luck here =) i followed the wiki for creating a master user (the non-sql-version) and i can login as another user via this master user. my dovecot version is 1.2.9 on an ubuntu server 10.4.3 lts. what i don't get is the acl-setting, so that the master-user can access all the

Hi! What am I doing wrong here? Mission: Delete old empty sub mailboxes in our Public mailspace acl-file contents: MailingLists user=dag lrwstipekxa MailingLists/* user=dag lrwstipekxa Didn't work from my mail client so tried: Command tried: % doveadm mailbox delete -s MailingLists/Glibc -u dag doveadm(dag): Error: Can't delete mailbox MailingLists/Glibc: Permission

Hello, I have a couple of doubts, as listed below: 1. To list all the global variables in the module, I am iterating using type_iterator and for each Type I get, I am using value_iterator to iterate over Values . In the second iteration I am getting unexpected results. For each type obtained from type_iterator->second, value_iterator->first produces the same list as what

Hi All, I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but the ACL thing is not working, the public folder is visible and accessible to everyone. My dovecot config for public folder is like ######## namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public subscriptions = no } plugin { acl = vfile } ######### and I have my

I'm trying to set up a public namespace so that a set of IMAP folders are available to all staff - similar to MS Exchange Public Folders. I've managed to set up the namespace correctly but I'm having trouble with the ACLs. The global ACL file is the only method I can get to work. All I want to do is to allow 1 user admin privileges to create & delete anything but all other users

In my main R program, I have source("retaanalysis/Functions/doAirport.R") .... stuff to read data and calculate ads sapply(ads, function(x) {doAirport(x, base)} ) And doAirport has # analyze the flights for a given airport doAirport = function(df, base) { # Get rid of unused runway factor levels (from other airports) df$lrw <- drop.levels(df$lrw) # In gdata package #

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I've come across a problem that I can't figure out. I'm using Dovecot 1.2.6 and Sieve 0.1.13. I'm using the following sieve script to sort my incoming mail. require ["fileinto", "envelope"]; if envelope :all :is "from" "sopprde at newport.th.gov.bc.ca" { fileinto

We have a solution using Dovecot as a secondary mail archive. All mailboxes are populated/groomed by master account and the actual users have only read access. This is achieved by a simple ACL approach. dovecot.conf has protocol imap { mail_plugins = acl quota imap_quota zlib } plugin { acl = vfile:/etc/dovecot/acls:cache_secs=300 } /etc/dovecot/acls/.DEFAULT file is trivial: user=master

It seems after checking the code that global ACL file functionality was changed at 2.2.14 so that only 1 rule is used, not multiple rules. This is not documented or said anywhere into change logs. Br, Ova -----Original Message----- From: dovecot [mailto:dovecot-bounces at dovecot.org] On Behalf Of Ovidiu Moldovan Sent: 10. helmikuuta 2015 10:26 To: dovecot at dovecot.org Subject: Dovecot 2.2.15

A hopefully simple question regarding the use of ACLs - the spirit being of taking away most permissions first and then adding them back selectively: In the global ACL declaration I have: > * owner lr > * group=SYS lrwstipekxa The owner is put into the SYS group via userdb extra field in static passwd file ("archiv" is a system user, but pam is disabled for the server): >

Hi all, I will migrate a windows fileserver to a Suse System with XFS-filesystem and Samba. I will copy the files with the robocopy tool from Microsoft. I did some test and I noticed that XFS-filesystem does not support inheritance like NTFS. If there a solution for that problem? How did you solve that problem? Thank you! Richard

I have just enabled user_xattr on the partition where my samba share is on. Now when I use getfattr I see the extended attribute user.SAMBA_PAI on my files. But ACL inheritance isn't taking place... When I (from within Windows) click on Properties > Security > Advanced an then enable "Allow inheritable permissions..." on a certain file, then the attribute user.SAMBA_PAI

Hi friends, I would like to remove write rights for a specific virtual user/email address. I've read the wiki "https://wiki2.dovecot.org/ACL" but there is nothing about it. So I started reading and rereading some old ML, like this: https://www.dovecot.org/list/dovecot/2006-June/013683.html where they talk about something like that but I would like to implement current

...I had under my eyes the solution I have not seen: * user=foo lrw Public user=bar lrwstipekxa Public/* user=bar lrwstipekxa I was enough (in my case) add the initial "*" wildcards, like this: * user=info at mydomain.com lrwsi where the "*" wildcards means all groups. I have verified and so the configuration is perfect, the user can not delete their own messages