Why are only admins allowed to AUTH to lmtpd?
Rob Siemborski
rjs3 at andrew.cmu.edu
Fri Jan 3 15:10:09 EST 2003
On Fri, 3 Jan 2003, Amos Gouaux wrote:
> rs> There's no reason regular users should be submitting to the LMTP server,
> rs> they should be submitting using SMTP to an SMTP server, and then the LMTP
> rs> server trusts the SMTP server. This (admitedly marginaly) simplifies the
> rs> authorization code in lmtpd.
>
> How does the posting ("p") right fit in?
Each message in an LMTP session gets its own authorization identity, which
is checked agains the ACL of the mailbox.
-Rob
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456
Research Systems Programmer * /usr/contributed Gatekeeper
More information about the Info-cyrus
mailing list