Hi Anders
Anders Brander writes:
> Extra security? I've always hated the vpopmail model, "all users are one
> user"
It has advantages and disavantages. It means that vpopmail runs under
a dedicated user and group without (at the moment) any need for set-id.
IMAP and POP servers do need setuid
Hi Paul and others,
On Fri, 2003-09-12 at 14:32, Paul L. Allen wrote:
> > IMHO it's the correct (tm) way to do things. It's not just a fiddle,
> > it's the best solution. I would say that the setuid-thing is a fiddle.
> I think which way you regard as a fiddle depends very much upon what you
> do
Hi Anders
Anders Brander writes:
> IMHO it's the correct (tm) way to do things. It's not just a fiddle,
> it's the best solution. I would say that the setuid-thing is a fiddle.
I think which way you regard as a fiddle depends very much upon what you
do on your system.
> I think we confused ea
Hi,
Phew, this mail is getting longer and longer...
On Fri, 2003-09-12 at 04:23, Paul L. Allen wrote:
> > > It could get rather unwieldy if you use MySQL for other things.
> > Why?
> Just a gut feeling that if you have many MySQL users for one purpose
> and many more MySQL users who are there pur
Anders Brander writes:
> > It could get rather unwieldy if you use MySQL for other things.
>
> Why?
Just a gut feeling that if you have many MySQL users for one purpose
and many more MySQL users who are there purely as a fiddle to allow
vpopmail to work then it could make life difficult to dist
Hi,
On Fri, 2003-09-12 at 03:16, Paul L. Allen wrote:
> > If you add a special group to every user you are back where you started.
> I didn't say it was a good solution. I said it was a solution. Compared
> to that, a lot of the alternatives look good.
Agree, alternatives are better.
> > I can
Anders Brander writes:
> If you add a special group to every user you are back where you started.
I didn't say it was a good solution. I said it was a solution. Compared
to that, a lot of the alternatives look good.
> I can't see what's wrong with a mysql user per system user. That would
> be
Hi,
On Fri, 2003-09-12 at 01:17, Paul L. Allen wrote:
> > This is an interesting point and I'd love to find a clean solution to
> > this issue.
> I don't think you'll find a clean solution which doesn't involve set-id.
> All the others are messy to administer, like a MySQL username per system
> u
Tom Collins writes:
> This is an interesting point and I'd love to find a clean solution to
> this issue.
I don't think you'll find a clean solution which doesn't involve set-id.
All the others are messy to administer, like a MySQL username per system
user or adding a special group to every use
