17-Oct-02 at 15:31, Boniforti Flavio (boniforti.fco-ver.it) wrote :
>
> > Users for just mail (if they only POP or IMAP to the server) need
> > neither a home directory nor a shell. I set our users home to
> > /dev/null
> > and the shell to /bin/false.
>
> Where do I store received e-mails, if my users don't have any homedir?
> How are you working actually with your POP-only users?

Received emails go to /var/spool/mail anyway; it doesn't have to be a
user's $HOME for this to work. $HOME is only used as a default place to
be when you login via a shell, or ftp perhaps, and a place to store
local configurations for things like mutt, pine, X windows... but only
if your users have a shell in the first place.

Of course, to have IMAP folders on the server the users will need a
$HOME, but they can still read their INBOX via IMAP no problem, and
store other folders locally.

> > Depending on your paranoia level, you can probably go further still.
> > There are some hardened configurations out there which are no doubt
> > better than mine.
>
> What do you mean? I heard of people using MySQL and/or LDAP...

MySQL or LDAP are just lookup tables the same as a hash db or a regexp
table. When I talk about hardened I'm thinking about specific kernel
compilations, different partitions with different filesystems, chroot
everywhere, no extraneous daemons on the box, etc etc

Regards,

-- 
[Simon White. vim/mutt. simonmtds.com. GIMPS:30.94% see www.mersenne.org]
Whenever I watch TV and see those poor starving kids all over the world, I
can't help but cry. I mean, I'd love to be skinny like that but not with
all those flies and death and stuff.  -- Mariah Carey
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]