I think this is rather debatable. Perhaps some of the config files could be replaced by things like apache2/conf.d sections that calculated things from the dtc database but it wouldn't be as simple to debug.
However, I think there is one file which is troublesome here. I think most users should modify /var/lib/dtc/etc/quotawarnmsg to add some customisation (like the name of the server owner maybe) that makes it easier to distinguish a real warning from a phishing attack. When /var/lib/dtc/etc/quotawarnmsg is emailed, it does not use the header or signature from /etc/dtc/ so it is rather for users to dismiss or attackers to spoof. Could that one be moved to /etc/dtc, please? Thanks, -- MJ Ray (slef), member of www.software.coop, a for-more-than-profit co-op. http://koha-community.org supporter, web and library systems developer. In My Opinion Only: see http://mjr.towers.org.uk/email.html Available for hire (including development) at http://www.software.coop/ -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
