On Fri, 07 Aug 2009 15:23:32 -0400 Timo Sirainen <t...@iki.fi> wrote:
> That's because in private namespaces user owns the mails, and > "authenticated" doesn't reduce the user's privileges. You could use > "owner" instead. > > Also I don't think you should use ACLs at all here. It's easier and more > secure to just make /var/mail/virtual non-writable to imap process. For > example change file/dir owners to root and make them world-readable. Thank you, Timo. Both variants are working fine for me.