Re: Any way to make a shared mailbox(not a shared folder)

[Kees van Vloten]

On 02-04-2024 15:16, Maksim Rodin wrote:

Hi


In Thunderbird you can use the folder-account addon to get the identity set
per folder, so that the sender matches the info@ account when sending mail.


Together with this addon this might be a solution. Thank you for the
hint! I will give it a try.
I have setup an imap-postlogin script  that queries Samba-AD (ldap) to 
provide the user with all its mailboxes and I run a separate daemonized 
script that extracts permission data regularly from ldap and writes it 
to the file in this setting:


plugin {
  acl = vfile:/srv/mail/dovecot/lib/dovecot-acl:cache_secs=600

}

Together with MCD to configure Thunderbird, the user experience is alright.

- Kees.



On Tue Apr  2 14:56:52 2024, Kees van Vloten wrote:

On 02-04-2024 14:34, Maksim Rodin wrote:

Hi
I am not critical but just want to share some thoughts regarding this
way of handling shared mailboxes:

In general how i do it is just make an info@ account and login as an imap
user

this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.

aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?


This is the way we do it right now. It does not seem to be safe or easy
to manage.
1) There must be at least one person which is supposed to give the
password of the shared mailbox to all new users of this mailbox.
And I think the mail administrator is not supposed to be that person
in terms of security.
2) What if you have to change the password of this shared mailbox?
What are the many users of this mailbox supposed to do if that happens?
3) What happens if a user of this mailbox (who knows the password)
leaves the company?
4) The more people know the password of the shared mailbox the higher is
the possibility that this password might fall into the wrong hands.


any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.

its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails

thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.

I fully agree with that.

The main problem I am trying to solve is the password management.
To be more precise I do not want to be responsible for managing passwords
of these shared mailboxes due to the reasons mentioned above.

This problem is solved for you when you project the shared mailbox as a
shared folder in the the user's account.

The user uses his/her password, kerberos ticket, or what method you have, to
login and sees all mailboxes it is entitled to. If (s)he get more or less
entitlements you simply change permissions on the shared folders.

In Thunderbird you can use the folder-account addon to get the identity set
per folder, so that the sender matches the info@ account when sending mail.

- Kees.


On Tue Apr  2 07:43:49 2024, Paul Kudla (SCOM.CA Internet Services Inc.) wrote:

In general how i do it is just make an info@ account and login as an imap
user

this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.

aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?

any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.

its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails

thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.





Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)

Have A Happy Tuesday !!!

Scom.ca Internet Services 
004-1009 Byron Street South
Whitby, Ontario - Canada
L1N 4S3

Toronto 416.642.7266
Main 1.866.411.7266
Fax 1.888.892.7266
Email p...@scom.ca

On 2024-04-02 7:25 a.m., Maksim Rodin wrote:

Hello
I wonder if there is a right way to make a shared mailbox?
I do not mean "shared folder" but a whole mailbox.
E.g. I have a mailbox i...@company.com and I have a user mailbox 
us...@company.com.
I would like that a user which can already authenticate as us...@company.com
can setup another account in his Thunderbird as, say, 
us...@company.com\i...@company.com
or something like user1*info, enters his own password and can use the mailbox
i...@company.com as his second mailbox.
It might be something similar to master user feature but I do not want
the us...@company.com to have access to all the mailboxes on the dovecot imap 
server.


___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email 

Re: Any way to make a shared mailbox(not a shared folder)

[Maksim Rodin]

Hi

> In Thunderbird you can use the folder-account addon to get the identity set
> per folder, so that the sender matches the info@ account when sending mail.
> 
Together with this addon this might be a solution. Thank you for the
hint! I will give it a try.

On Tue Apr  2 14:56:52 2024, Kees van Vloten wrote:
> 
> On 02-04-2024 14:34, Maksim Rodin wrote:
> > Hi
> > I am not critical but just want to share some thoughts regarding this
> > way of handling shared mailboxes:
> > > In general how i do it is just make an info@ account and login as an imap
> > > user
> > > 
> > > this allows multiple info@ users especially in thunderbird to be connected
> > > as a seconday account accross any device.
> > > 
> > > aka just treat any shared mailboxes as actual mail accounts, way simplier
> > > and easier to manage?
> > > 
> > This is the way we do it right now. It does not seem to be safe or easy
> > to manage.
> > 1) There must be at least one person which is supposed to give the
> > password of the shared mailbox to all new users of this mailbox.
> > And I think the mail administrator is not supposed to be that person
> > in terms of security.
> > 2) What if you have to change the password of this shared mailbox?
> > What are the many users of this mailbox supposed to do if that happens?
> > 3) What happens if a user of this mailbox (who knows the password)
> > leaves the company?
> > 4) The more people know the password of the shared mailbox the higher is
> > the possibility that this password might fall into the wrong hands.
> > 
> > > any user can then move/delete etc an email that they will be looking after
> > > thus updating the info@ at the same time.
> > > 
> > > its very common today to have info@ and accounting@ with multiple users
> > > attached to these as different people will be responsible for different
> > > emails
> > > 
> > > thunderbird allows drag and drop accross email accounts (only one email 
> > > at a
> > > time), this allows easy management.
> > I fully agree with that.
> > 
> > The main problem I am trying to solve is the password management.
> > To be more precise I do not want to be responsible for managing passwords
> > of these shared mailboxes due to the reasons mentioned above.
> 
> This problem is solved for you when you project the shared mailbox as a
> shared folder in the the user's account.
> 
> The user uses his/her password, kerberos ticket, or what method you have, to
> login and sees all mailboxes it is entitled to. If (s)he get more or less
> entitlements you simply change permissions on the shared folders.
> 
> In Thunderbird you can use the folder-account addon to get the identity set
> per folder, so that the sender matches the info@ account when sending mail.
> 
> - Kees.
> 
> > 
> > On Tue Apr  2 07:43:49 2024, Paul Kudla (SCOM.CA Internet Services Inc.) 
> > wrote:
> > > In general how i do it is just make an info@ account and login as an imap
> > > user
> > > 
> > > this allows multiple info@ users especially in thunderbird to be connected
> > > as a seconday account accross any device.
> > > 
> > > aka just treat any shared mailboxes as actual mail accounts, way simplier
> > > and easier to manage?
> > > 
> > > any user can then move/delete etc an email that they will be looking after
> > > thus updating the info@ at the same time.
> > > 
> > > its very common today to have info@ and accounting@ with multiple users
> > > attached to these as different people will be responsible for different
> > > emails
> > > 
> > > thunderbird allows drag and drop accross email accounts (only one email 
> > > at a
> > > time), this allows easy management.
> > > 
> > > 
> > > 
> > > 
> > > 
> > > Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)
> > > 
> > > Have A Happy Tuesday !!!
> > > 
> > > Scom.ca Internet Services 
> > > 004-1009 Byron Street South
> > > Whitby, Ontario - Canada
> > > L1N 4S3
> > > 
> > > Toronto 416.642.7266
> > > Main 1.866.411.7266
> > > Fax 1.888.892.7266
> > > Email p...@scom.ca
> > > 
> > > On 2024-04-02 7:25 a.m., Maksim Rodin wrote:
> > > > Hello
> > > > I wonder if there is a right way to make a shared mailbox?
> > > > I do not mean "shared folder" but a whole mailbox.
> > > > E.g. I have a mailbox i...@company.com and I have a user mailbox 
> > > > us...@company.com.
> > > > I would like that a user which can already authenticate as 
> > > > us...@company.com
> > > > can setup another account in his Thunderbird as, say, 
> > > > us...@company.com\i...@company.com
> > > > or something like user1*info, enters his own password and can use the 
> > > > mailbox
> > > > i...@company.com as his second mailbox.
> > > > It might be something similar to master user feature but I do not want
> > > > the us...@company.com to have access to all the mailboxes on the 
> > > > dovecot imap server.
> > > > 
> > > ___
> > > dovecot mailing list -- dovecot@dovecot.org
> > > To 

Re: Any way to make a shared mailbox(not a shared folder)

[Kees van Vloten]

On 02-04-2024 14:34, Maksim Rodin wrote:

Hi
I am not critical but just want to share some thoughts regarding this
way of handling shared mailboxes:

In general how i do it is just make an info@ account and login as an imap
user

this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.

aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?


This is the way we do it right now. It does not seem to be safe or easy
to manage.
1) There must be at least one person which is supposed to give the
password of the shared mailbox to all new users of this mailbox.
And I think the mail administrator is not supposed to be that person
in terms of security.
2) What if you have to change the password of this shared mailbox?
What are the many users of this mailbox supposed to do if that happens?
3) What happens if a user of this mailbox (who knows the password)
leaves the company?
4) The more people know the password of the shared mailbox the higher is
the possibility that this password might fall into the wrong hands.


any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.

its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails

thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.

I fully agree with that.

The main problem I am trying to solve is the password management.
To be more precise I do not want to be responsible for managing passwords
of these shared mailboxes due to the reasons mentioned above.


This problem is solved for you when you project the shared mailbox as a 
shared folder in the the user's account.


The user uses his/her password, kerberos ticket, or what method you 
have, to login and sees all mailboxes it is entitled to. If (s)he get 
more or less entitlements you simply change permissions on the shared 
folders.


In Thunderbird you can use the folder-account addon to get the identity 
set per folder, so that the sender matches the info@ account when 
sending mail.


- Kees.



On Tue Apr  2 07:43:49 2024, Paul Kudla (SCOM.CA Internet Services Inc.) wrote:

In general how i do it is just make an info@ account and login as an imap
user

this allows multiple info@ users especially in thunderbird to be connected
as a seconday account accross any device.

aka just treat any shared mailboxes as actual mail accounts, way simplier
and easier to manage?

any user can then move/delete etc an email that they will be looking after
thus updating the info@ at the same time.

its very common today to have info@ and accounting@ with multiple users
attached to these as different people will be responsible for different
emails

thunderbird allows drag and drop accross email accounts (only one email at a
time), this allows easy management.





Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)

Have A Happy Tuesday !!!

Scom.ca Internet Services 
004-1009 Byron Street South
Whitby, Ontario - Canada
L1N 4S3

Toronto 416.642.7266
Main 1.866.411.7266
Fax 1.888.892.7266
Email p...@scom.ca

On 2024-04-02 7:25 a.m., Maksim Rodin wrote:

Hello
I wonder if there is a right way to make a shared mailbox?
I do not mean "shared folder" but a whole mailbox.
E.g. I have a mailbox i...@company.com and I have a user mailbox 
us...@company.com.
I would like that a user which can already authenticate as us...@company.com
can setup another account in his Thunderbird as, say, 
us...@company.com\i...@company.com
or something like user1*info, enters his own password and can use the mailbox
i...@company.com as his second mailbox.
It might be something similar to master user feature but I do not want
the us...@company.com to have access to all the mailboxes on the dovecot imap 
server.


___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Any way to make a shared mailbox(not a shared folder)

[Maksim Rodin]

Hi
I am not critical but just want to share some thoughts regarding this
way of handling shared mailboxes:
> 
> In general how i do it is just make an info@ account and login as an imap
> user
> 
> this allows multiple info@ users especially in thunderbird to be connected
> as a seconday account accross any device.
> 
> aka just treat any shared mailboxes as actual mail accounts, way simplier
> and easier to manage?
> 

This is the way we do it right now. It does not seem to be safe or easy
to manage.
1) There must be at least one person which is supposed to give the
password of the shared mailbox to all new users of this mailbox.
And I think the mail administrator is not supposed to be that person
in terms of security.
2) What if you have to change the password of this shared mailbox?
What are the many users of this mailbox supposed to do if that happens?
3) What happens if a user of this mailbox (who knows the password)
leaves the company?
4) The more people know the password of the shared mailbox the higher is
the possibility that this password might fall into the wrong hands.

> 
> any user can then move/delete etc an email that they will be looking after
> thus updating the info@ at the same time.
> 
> its very common today to have info@ and accounting@ with multiple users
> attached to these as different people will be responsible for different
> emails
> 
> thunderbird allows drag and drop accross email accounts (only one email at a
> time), this allows easy management.

I fully agree with that.

The main problem I am trying to solve is the password management.
To be more precise I do not want to be responsible for managing passwords
of these shared mailboxes due to the reasons mentioned above.


On Tue Apr  2 07:43:49 2024, Paul Kudla (SCOM.CA Internet Services Inc.) wrote:
> 
> In general how i do it is just make an info@ account and login as an imap
> user
> 
> this allows multiple info@ users especially in thunderbird to be connected
> as a seconday account accross any device.
> 
> aka just treat any shared mailboxes as actual mail accounts, way simplier
> and easier to manage?
> 
> any user can then move/delete etc an email that they will be looking after
> thus updating the info@ at the same time.
> 
> its very common today to have info@ and accounting@ with multiple users
> attached to these as different people will be responsible for different
> emails
> 
> thunderbird allows drag and drop accross email accounts (only one email at a
> time), this allows easy management.
> 
> 
> 
> 
> 
> Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)
> 
> Have A Happy Tuesday !!!
> 
> Scom.ca Internet Services 
> 004-1009 Byron Street South
> Whitby, Ontario - Canada
> L1N 4S3
> 
> Toronto 416.642.7266
> Main 1.866.411.7266
> Fax 1.888.892.7266
> Email p...@scom.ca
> 
> On 2024-04-02 7:25 a.m., Maksim Rodin wrote:
> > 
> > Hello
> > I wonder if there is a right way to make a shared mailbox?
> > I do not mean "shared folder" but a whole mailbox.
> > E.g. I have a mailbox i...@company.com and I have a user mailbox 
> > us...@company.com.
> > I would like that a user which can already authenticate as us...@company.com
> > can setup another account in his Thunderbird as, say, 
> > us...@company.com\i...@company.com
> > or something like user1*info, enters his own password and can use the 
> > mailbox
> > i...@company.com as his second mailbox.
> > It might be something similar to master user feature but I do not want
> > the us...@company.com to have access to all the mailboxes on the dovecot 
> > imap server.
> > 
> ___
> dovecot mailing list -- dovecot@dovecot.org
> To unsubscribe send an email to dovecot-le...@dovecot.org

-- 
С уважением,
Родин Максим
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Any way to make a shared mailbox(not a shared folder)

[Aki Tuomi via dovecot]

You could use master user feature for that.

Aki

> On 02/04/2024 14:43 EEST Paul Kudla (SCOM.CA Internet Services Inc.) 
>  wrote:
> 
>  
> In general how i do it is just make an info@ account and login as an 
> imap user
> 
> this allows multiple info@ users especially in thunderbird to be 
> connected as a seconday account accross any device.
> 
> aka just treat any shared mailboxes as actual mail accounts, way 
> simplier and easier to manage?
> 
> any user can then move/delete etc an email that they will be looking 
> after thus updating the info@ at the same time.
> 
> its very common today to have info@ and accounting@ with multiple users 
> attached to these as different people will be responsible for different 
> emails
> 
> thunderbird allows drag and drop accross email accounts (only one email 
> at a time), this allows easy management.
> 
> 
> 
> 
> 
> Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)
> 
> Have A Happy Tuesday !!!
> 
> Scom.ca Internet Services 
> 004-1009 Byron Street South
> Whitby, Ontario - Canada
> L1N 4S3
> 
> Toronto 416.642.7266
> Main 1.866.411.7266
> Fax 1.888.892.7266
> Email p...@scom.ca
> 
> On 2024-04-02 7:25 a.m., Maksim Rodin wrote:
> > 
> > Hello
> > I wonder if there is a right way to make a shared mailbox?
> > I do not mean "shared folder" but a whole mailbox.
> > E.g. I have a mailbox i...@company.com and I have a user mailbox 
> > us...@company.com.
> > I would like that a user which can already authenticate as us...@company.com
> > can setup another account in his Thunderbird as, say, 
> > us...@company.com\i...@company.com
> > or something like user1*info, enters his own password and can use the 
> > mailbox
> > i...@company.com as his second mailbox.
> > It might be something similar to master user feature but I do not want
> > the us...@company.com to have access to all the mailboxes on the dovecot 
> > imap server.
> > 
> ___
> dovecot mailing list -- dovecot@dovecot.org
> To unsubscribe send an email to dovecot-le...@dovecot.org
___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org

Re: Any way to make a shared mailbox(not a shared folder)

[Paul Kudla (SCOM.CA Internet Services Inc.)]

In general how i do it is just make an info@ account and login as an 
imap user


this allows multiple info@ users especially in thunderbird to be 
connected as a seconday account accross any device.


aka just treat any shared mailboxes as actual mail accounts, way 
simplier and easier to manage?


any user can then move/delete etc an email that they will be looking 
after thus updating the info@ at the same time.


its very common today to have info@ and accounting@ with multiple users 
attached to these as different people will be responsible for different 
emails


thunderbird allows drag and drop accross email accounts (only one email 
at a time), this allows easy management.






Thanks - Paul Kudla (Manager SCOM.CA Internet Services Inc.)

Have A Happy Tuesday !!!

Scom.ca Internet Services 
004-1009 Byron Street South
Whitby, Ontario - Canada
L1N 4S3

Toronto 416.642.7266
Main 1.866.411.7266
Fax 1.888.892.7266
Email p...@scom.ca

On 2024-04-02 7:25 a.m., Maksim Rodin wrote:


Hello
I wonder if there is a right way to make a shared mailbox?
I do not mean "shared folder" but a whole mailbox.
E.g. I have a mailbox i...@company.com and I have a user mailbox 
us...@company.com.
I would like that a user which can already authenticate as us...@company.com
can setup another account in his Thunderbird as, say, 
us...@company.com\i...@company.com
or something like user1*info, enters his own password and can use the mailbox
i...@company.com as his second mailbox.
It might be something similar to master user feature but I do not want
the us...@company.com to have access to all the mailboxes on the dovecot imap 
server.


___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org