[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Post ACL

To: Timo Sirainen <tss@xxxxxx>
Subject: Re: Post ACL
From: Philip Guenther <guenther+imap@xxxxxxxxxxxx>
Date: Sat, 15 Nov 2008 22:29:51 -0800
Cc: ietf-imapext@xxxxxxx
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=sendmail.com; s=ladle.dkim; t=1226817080; bh=DDISj3aCobhm5RtqOL7u8cJNddUabCXyk4Eu RsdPTZA=; h=Received:X-DKIM:DKIM-Signature:Date:From:X-X-Sender:To: cc:Subject:In-Reply-To:Message-ID:References:User-Agent: MIME-Version:Content-Type; b=uaNwI2qpAbALYxX8s7XNgWMYVDA9VCRgt+P22 DERF0qGpcZ0f2dir6SQgfHpdyrXhj1zOypIqDDzhooTRca5UqEwIAnWsrJyhPRMBGsL 5jMrgOQoqn63djKuhUKZ80UqSxgSNSl+BG6qkMh/kQ9XH1nIAAIcnk0CvyhGOACldhE =
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=sendmail.com; s=spork.dkim; t=1226816993; bh=DDISj3aCobhm5RtqOL7u8cJNddUabCXyk4Eu RsdPTZA=; h=Date:From:To:cc:Subject:In-Reply-To:Message-ID: References:MIME-Version:Content-Type; b=bgzWBa7iN84A8N3OXiSg9y20W/ hY6k+c2E1vUeMPRNc1ZnvdXZMwa5m8qmznKPydXeXftj4KGta72Ie9+oqQY22EyZzBH 6JRUx/OzZNrQ8gL6K9A7WBvIUyZiQU3wbQJs7KkVZIJ42plpvsV5LDHPeuTSCVvQEU7 HdoYhGuVTdY=
In-reply-to: <30EAB32F-220B-4EB8-B108-8F9815C0FB78@xxxxxx>
List-archive: <http://www.imc.org/ietf-imapext/mail-archive/>
List-id: <ietf-imapext.imc.org>
List-unsubscribe: <mailto:ietf-imapext-request@imc.org?body=unsubscribe>
References: <> <alpine.BSO.1.10.0811151904350.18223@xxxxxxxxxxxxxxxxxx> <30EAB32F-220B-4EB8-B108-8F9815C0FB78@xxxxxx>
Sender: owner-ietf-imapext@xxxxxxxxxxxx
User-agent: Alpine 1.10 (BSO 962 2008-03-14)

On Sun, 16 Nov 2008, Timo Sirainen wrote:
...
> I'm not entirely sure about the default 'p' right though. If I give 
> "anyone +p" right it would mean that user1's Sieve script could do 
> fileinto "shared/user2/INBOX", which doesn't seem like a good idea.

I agree: having a default "anyone +p" is unnecessary and 
counter-productive when the system has filters to provide fine-grained 
access-control.

> I guess I could create a completely separate "anonymous" user that 
> doesn't match any other user. Then each mailbox could have by default an 
> "anonymous +p" right (it would match non-INBOX only when using +detail 
> addresses).

Given that you have per-user filters and can get authentication from that, 
why would you supply a default "anonymous +p" right at all?  Assuming 
there's a case where it's necessary, are you sure it's needed for 
mailboxes other than INBOX?

Philip Guenther

Follow-Ups:
- Re: Post ACL
  - From: Timo Sirainen

References:
- Post ACL
  - From: Timo Sirainen
- Re: Post ACL
  - From: Philip Guenther
- Re: Post ACL
  - From: Timo Sirainen

Prev by Date: Re: Post ACL
Next by Date: Re: Post ACL
Previous by thread: Re: Post ACL
Next by thread: Re: Post ACL
Index(es):
- Date
- Thread