limit sharing ability to certain users

Hello Is it possible to limit the ability of sharing it’s own mailboxes to only a few users? We have a few sensitive mailboxes of users where the ability to share via IMAP SETACL should be prevented. I tried the following so far… doveadm acl remove -u t...@onnet.ch INBO

limit sharing ability to certain users

Hello Is it possible to limit the ability of sharing it’s own mailboxes to only a few users? We have a few sensitive mailboxes of users where the ability to share via IMAP SETACL should be prevented. I tried the following so far… doveadm acl remove -u t...@onnet.ch INBOX user=t...@onnet.ch ad

Re: limit sharing ability to certain users

Thanks for the advice Aki > On 6 Aug 2018, at 07:26, Aki Tuomi wrote: > > userdb { >driver = username_format=%Lu passwd-file >args = /etc/dovecot/share.passwd > } Something is wrong with the suggested driver configuration – Leads to a fatal – I think there is missing a driver name. Any

Re: limit sharing ability to certain users

Sorry for that! I was offline during writing my answer to your mail and so it left my outbox after the advice from Sami. The solution works well when using passwd userdbs only. I didn’t get it running in conjunction with ldap userdb. I tried to use an LDAP attribute and mapping it to userdb_acl

Re: limit sharing ability to certain users

b_ prefix. > > Aki > > > On 07.08.2018 10:54, Simeon Ott wrote: >> Sorry for that! I was offline during writing my answer to your mail and so >> it left my outbox after the advice from Sami. >> >> The solution works well when using passwd userdbs only. I di

Re: limit sharing ability to certain users

… attached the dovecot -n, linked files, debug log lines during a standard client login root@buserver:/etc/dovecot/conf.d# doveconf -n # 2.2.13: /etc/dovecot/dovecot.conf # OS: Linux 3.16.0-6-amd64 x86_64 Debian 8.11 auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login auth_

Re: limit sharing ability to certain users

args = /etc/dovecot/dovecot-ldap.conf > result_success = continue-ok > } > > so that the next one is processed. > > you can use 'doveadm user t...@onnet.ch' to verify that the attributes are > read for this user, and with another username that they are not. >

Re: limit sharing ability to certain users

still the same… root@buserver:/etc/dovecot# doveadm user te...@onnet.ch field valueuserdb lookup: user te...@onnet.ch doesn't exist relevant config output from doveconf -n userdb { args = /etc/dovecot/dovecot-ldap.conf driver = ldap result_success = continue-ok } userdb { args = userna

Re: limit sharing ability to certain users

itory. thanks anyway > On 7 Aug 2018, at 13:00, Simeon Ott wrote: > but, did you read my last note anyway? > IMPORTANT NOTE: anyway.. even with this options set (acl and > acl_globals_only) the user t...@onnet.ch <mailto:t...@onnet.ch> is still able > to share its own folders

Re: limit sharing ability to certain users

.dovecot.org/ <http://repo.dovecot.org/> > > Sami > > >> On 8 Aug 2018, at 10.27, Simeon Ott > <mailto:simeon@onnet.ch>> wrote: >> >> Okay, this seems to be due to the fact that the option “use_globals_only" is >> supported onl

Hierarchy separator and LAYOUT=FS change

Hello, I stumbled across a 5-year-old post on the dovecot list about changing the dovecot hierarchy separator to enable shared mailboxes (http://www.dovecot.org/list/dovecot/2011-January/056201.html ). At the moment I’m stuck in a pr

Re: Hierarchy separator and LAYOUT=FS change

Anyone? What are the steps to take to migrate from dot-to slash-separator with LAYOUT=fs? > On 11.10.2016, at 00:06, Simeon Ott wrote: > > Hello, > > I stumbled across a 5-year-old post on the dovecot list about changing the > dovecot hierarchy separator to enable shared