Cross Domain ACL: Which are the security risks?

Fabio Pietrosanti lists at infosecurity.ch
Wed Dec 12 06:41:58 EST 2007


Hi all,

i really need to have Cross Domain ACL within Cyrus IMAP, otherwise it's
a huge limitations that does not permit to have 'shared folders' between
users belonging to different domains (user1 at domain1.com and
user2 at domain2.com) .

MS Exchange already have this kind of features.

When Cyrus is used in a groupware environment like Kolab, the imap
folders represent groupware resources used for calendaring, contacts,
todo, etc, etc.

So sharing folders it's very important.

I really would like to understand which are the security risks perceived
by the Cyrus project's developer about the implementation of Cross
Domain ACL.

Imho they are a must (along with the sharedseen).

Kind Regards,
Fabio Pietrosanti


More information about the Cyrus-devel mailing list