On 02-04-2024 15:16, Maksim Rodin wrote:
Hi
In Thunderbird you can use the folder-account addon to get the identity set
per folder, so that the sender matches the info@ account when sending mail.
Together with this addon this might be a solution. Thank you for the
hint! I will give it a try.
I have setup an imap-postlogin script that queries Samba-AD (ldap) to
provide the user with all its mailboxes and I run a separate daemonized
script that extracts permission data regularly from ldap and writes it
to the file in this setting:
plugin {
acl = vfile:/srv/mail/dovecot/lib/dovecot-acl:cache_secs=600
}
Together with MCD to configure Thunderbird, the user experience is alright.
- Kees.
On Tue Apr 2 14:56:52 2024, Kees van Vloten wrote:
On 02-04-2024 14:34, Maksim Rodin wrote:
Hi
I am not critical but just want to share some thoughts regarding this
way of handling shared mailboxes:
In general how i do it is just make an info@ account and login as an imap
user
this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.
aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?
This is the way we do it right now. It does not seem to be safe or easy
to manage.
1) There must be at least one person which is supposed to give the
password of the shared mailbox to all new users of this mailbox.
And I think the mail administrator is not supposed to be that person
in terms of security.
2) What if you have to change the password of this shared mailbox?
What are the many users of this mailbox supposed to do if that happens?
3) What happens if a user of this mailbox (who knows the password)
leaves the company?
4) The more people know the password of the shared mailbox the higher is
the possibility that this password might fall into the wrong hands.
any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.
its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails
thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.
I fully agree with that.
The main problem I am trying to solve is the password management.
To be more precise I do not want to be responsible for managing passwords
of these shared mailboxes due to the reasons mentioned above.
This problem is solved for you when you project the shared mailbox as a
shared folder in the the user's account.
The user uses his/her password, kerberos ticket, or what method you have, to
login and sees all mailboxes it is entitled to. If (s)he get more or less
entitlements you simply change permissions on the shared folders.
In Thunderbird you can use the folder-account addon to get the identity set
per folder, so that the sender matches the info@ account when sending mail.
- Kees.
On Tue Apr 2 07:43:49 2024, Paul Kudla (SCOM.CA Internet Services Inc.) wrote:
In general how i do it is just make an info@ account and login as an imap
user
this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.
aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?
any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.
its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails
thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.
Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)
Have A Happy Tuesday !!!
Scom.ca Internet Services <http://www.scom.ca>
004-1009 Byron Street South
Whitby, Ontario - Canada
L1N 4S3
Toronto 416.642.7266
Main 1.866.411.7266
Fax 1.888.892.7266
Email p...@scom.ca
On 2024-04-02 7:25 a.m., Maksim Rodin wrote:
Hello
I wonder if there is a right way to make a shared mailbox?
I do not mean "shared folder" but a whole mailbox.
E.g. I have a mailbox i...@company.com and I have a user mailbox
us...@company.com.
I would like that a user which can already authenticate as us...@company.com
can setup another account in his Thunderbird as, say,
us...@company.com\i...@company.com
or something like user1*info, enters his own password and can use the mailbox
i...@company.com as his second mailbox.
It might be something similar to master user feature but I do not want
the us...@company.com to have access to all the mailboxes on the dovecot imap
server.
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
