On Thu, Sep 17, 2009 at 02:37:14PM -0500, John Dubchak wrote:
> On Thu, 2009-09-17 at 15:24 -0400, Victor Duchovni wrote:
> >
> > If you want to reduce security, set the parameter to "/" as documented.
>
> That's not my goal, so it's not a change I'm willing to introduce.
> Also, I wasn't aware that I'd be reducing security by doing that, so
> thanks for pointing that out to me.
Allowing the database to specify arbitrary mailbox paths reduces security.
Setting an explicit sub-tree of the filesystem for mailbox locations is
safer. If you want absolute paths in the database table, you want the
reduced security. Otherwise, trim-off a common prefix, and specify only
the relative path in the table.
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majord...@postfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
