This problem isn't new to this release but the dovecot lda "deliver" =
(/usr/libexec/dovecot/deliver) really needs (IMHO) setuid permission set =
for=20
when it is used in a virtual domains situation. Otherwise all virtual =
users=20
have to be given the same uid which is not preferred.
Is that a problem? On Postfix-based systems, when using virtual =
(non-system) accounts, having just single system user owning all mail is =
the most common way configure a system. Usually this user is named vmail. =
Cyrus/Courier/Dovecot/other-IMAP works nice and safe here.
It is important not to allow login for this vmail account.
Yes, Postfix supports arrangement where each virtual mailbox has different =
virtual user owner. Each virtual user uses an uid+gid, so it doesn't scale =
to 100000+ users..
The workaround is to copy the program to /opt - actually not such a bad =
solution.
True :-)
1.2.13 seems to work OK though. Thanks very much again for all your hard =
work.
1.2.13 also works nice as a dns, spam+virus filtering mailgw, openvpn, =
ftp, ipsec server. Thanks :-)
Dick
/Kari
|
