On 4 Jun 2001 18:36:34 +0200, Jonathan Wilson <wilsonclaborn.net> wrote:

> I'm using Postfix->Procmail->GnuPOP3d for my mail system and up till now
>I've had the virtual spools chown postfix.postfix, chmod 707. I'd like to
>get rid of the world read/writable, I think it's a security risk, but I'm
>not sure what procmail of gnupop3d run as.
>
> Has anyone dealt with this and found out what the proper ownership/perms are?

You can specify them (at least for the vda "virtual") using a map. See the
manpage of "man 8 virtual". With procmail, you're on your own.

MAILBOX OWNERSHIP
       Mailbox ownership is controlled by the virtual_uid_maps
       and virtual_gid_maps lookup tables, which are indexed with
       the full recipient address. Each table provides a string
       with the numerical user and group ID, respectively.
                            
       The virtual_minimum_uid parameter imposes a lower bound on
       numerical user ID values that may be specified in any vir­
       tual_owner_maps or virtual_uid_maps.

-- 
ralf.hildebrandtinnominate.com                            innominate AG
Technical Consultant                   Don't be afraid of what you see -
Diplom-Informatiker                     be afraid of what you don't see!
tel: +49.(0)7000.POSTFIX                        fax: +49.(0)30.308806-77
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]