similar to: Security hole #3: zlib plugin allows opening any gziped mboxes

Good evening, folks, Well, here at least. ;) I recently found out by accident about support for gzip compressed mbox files. While this is great for archives to keep wasting of space down to a minimum, unfortunately it is read only -- no support for rw access. Is implementing write access by any chance planned for future releases? Now for the spoiler. :) I mentioned, I found out about this

http://dovecot.org/releases/dovecot-1.0.rc29.tar.gz http://dovecot.org/releases/dovecot-1.0.rc29.tar.gz.sig Probably one more RC after this. * Security fix: If zlib plugin was loaded, it was possible to open gzipped mbox files outside the user's mail directory. + Added auth_gssapi_hostname setting. - IMAP: LIST "" "" didn't return anything if there didn't

http://dovecot.org/releases/dovecot-1.0.rc29.tar.gz http://dovecot.org/releases/dovecot-1.0.rc29.tar.gz.sig Probably one more RC after this. * Security fix: If zlib plugin was loaded, it was possible to open gzipped mbox files outside the user's mail directory. + Added auth_gssapi_hostname setting. - IMAP: LIST "" "" didn't return anything if there didn't

Would it be possible to make rsync capable to sync gziped source (at server) with non gziped detination file? PROBLEM: The rsyncd server provides a few *frequently* accessed, slow changing, *big* text files (DNS RBL zones). It seems that the source files are too big to stay in memory caches and rsync sessions cause to many hard disk I/O operations. Making rsynd capable to "ungzip"

I have some archive mails in gzipped mboxes. I could use them with dovecot 1.x without problems. But recently I have installed dovecot 2.0.12, and they are slow. very slow. Creating index files takes about 10 minutes for ~20M file with 560 messages for bzipped mbox, for gzipped is little better but still unusable :( Stracing dovecot process shows that every ~ 20 messages it rereads complete mbox

Greetings, in our small network with about 10 Clients I got a problem when opening files or directories. If there were no actions between server and client for about 2 minutes or more, the very first action (open file, change path, etc) needs a long long time. The problem occurs on some clients (win 2k/xp), but not on every client. I tried a working smb configuration from home, but still no

Unfortunately we have our first problem that could really be counted as security hole. Giving "1 LIST .. *" IMAP command allows the user to see all files and directories under the mbox root's parent directory, so potentially you could see other users' mailbox names. Nothing can be done with them though, so it's not possible to read or modify them. There are also some other

Unfortunately we have our first problem that could really be counted as security hole. Giving "1 LIST .. *" IMAP command allows the user to see all files and directories under the mbox root's parent directory, so potentially you could see other users' mailbox names. Nothing can be done with them though, so it's not possible to read or modify them. There are also some other

Help! I just noticed this error this morning, we have been getting a lot of these in rc28 and rc29, not in rc27 or before: Apr 6 07:22:52 karst dovecot: [ID 107833 mail.error] IMAP(jaearick): mbox file /var/mail/j/jaearick was modified while we were syncing, check your locking settings Pine coughed up an internal error, no core dump, and dovecot basically doubled the size of my mailbox by

Hi. If $otheruser shares a mailbox to $myuser, my private index is stored in *my* Maildir, according to this template (from the dovecot docs): mail_location = maildir:%%h/Maildir:INDEXPVT=%h/Maildir/shared/%%u If $otheruser renames the shared mailbox, all my private mail flags (Seen) are lost because my mailclient couldn't find the private index anymore. Is there any way to store the

Hi , I have the following requirement . other than following users, any other user sshd connection should be redirected to 2024 instead of port 22. root, ftp, guest So ssh root at ip // should be sent to sshd running at port 22 ssh otheruser at ip // should be sent to sshd running at port 2024 I know that we can do something like this: ssh -o ProxyCommand='ssh -W localhost:2024 cliuser

Hello! I am moving my mail from the old server with 1.0.rc29 to a brand new server with 1.1.7. I use Maildir in both servers. A few questions: 1) The new server has another name, can I just copy the mail files as-is, will the server name in the file names matter? 2) The new server has a different architecture and different endian, so I plan not to copy the index and cache files; they seem to

Thanks somuch. I am checking it. Best Regards, On Tue, Jul 18, 2017 at 9:08 PM, Reuti <reuti at staff.uni-marburg.de> wrote: > > > Am 08.07.2017 um 18:41 schrieb Sudarshan Soma <sudarshan12s at gmail.com>: > > > > Hi , > > I have the following requirement . > > other than following users, any other user sshd connection should be > > redirected

After sending a messasge about a problem (The folder 'Inbox' cannot contain items. Namespace problems) I found what seems to be a fix in the release for rc29. Besides any potential configuration files, do I need to delete the old index files? Any of the dovecot files? Based on the release notes for rc29 it seems the following will fix the problem we are experiencing: IMAP: LIST

Hello, I try to set up a shared maildir with symbolink links, but it doesn't work. The main user, from which I would share a mailbox, creates a mailbox named "Commun" with thunderbird. I see on the file system from the server that a directory .Commun is created in his ~/Maildir/ and that the file ~/Maildir/.subscriptions has now such an entry. Right. In ~/Maildir/Commun the

Hi all, I'm having terrible time, and a lot of core dumps, building dovecot on Solaris 10. My environment: gcc 3.3.2 LDFLAGS=-L/usr/local/ssl/lib -lssl -lcrypto \ -L/usr/local/BerkeleyDB.4.2/lib -ldb -L/usr/local/lib -lldap CPPFLAGS=-I/usr/local/BerkeleyDB/include \ -I/usr/local/include -I/usr/local/ssl/include my configure: ./configure --prefix=/usr/local --with-ldap ...that is:

Greetings. Possibly as the result of buggy tagging software, several hundred of my Ogg Vorbis files exhibit the following warning when examined by ogginfo: WARNING: Vorbis stream 1 does not have headers correctly framed. Terminal header page contains additional packets or has non-zero granulepos Nonetheless, most media players can play these files without any problem. A notable exception is

Hi, I'm seeing a weird problem with rsync 2.6.9 protocol version 29 on Debian Sarge. When copying a file from one location to another between two Debian boxes, if destination includes a file with same size and name, rsync fails to see that they are not exactly the same file. The situation originates from copying a file to a place which is periodically rsynced onwards, and the rsync

Hi, I saw the zlib-plugin reference in the alpha4 ChangeLog notes are searched the list for info about it. The only reference I found was from Timo back in March 2005. Questions: 1) Is this going to become a standard part of version 1.0? 2) Any plans or ability to make it read/write to a gzipped mailbox, or is this possible? Or will it always be read-only? 3) How does a mailbox get gzipped?

I''m writing a website with a feature that hosts images that people upload. Right now, relative paths works within on my Windows box. So specifically, I''m able to call File.open on "public/images/somefile.jpg" and Rails/WEBrick understands that the path is relative to the home directory of the project. This means that "public/images/somefile.jpg" ends up