> What about using "qmailAccountPurge"? > > "LDAP_PURGE (default: "qmailAccountPurge") > > If accountStatus set to 'deleted', the earliest date when the > mailMessageStore including all remaining content will be deleted from > the filesystem. > Values: date and time in seconds since Jan. 1, 1970 (the epoch) > Default: not set > Note: This deletion has to be done by an external helper program, for > example periodically run from cron. A sample script is included under > the name qmailAccountPurge.sh. Handle automatic deletions with care!" > > -- > Fábio Gomes >
Fabio, looking at your message, I come up with this idea, which I will call the "Five steps to Valhalla" :) 1) Include the shadowAccount object class for all users and change the attributes "shadowExpire" and "shadowWarning". The first is a date indicating the last date you can access IMAP/POP3 without changing you pwd. The second is the number of days before the shadowExpire you will be warned to change your pwd. So you can put a value like 7 for the later, or just do not set it. 2) Create a crontab script that runs once a day and checks shadowExpire/shadowWarning for each user. If shadowWarning is set, use its value. Otherwise, use the default value, which you can set into the script. If today within the "shadowWarning" days before "shadowExpire" date, issue a warning mail; if today is greater than "shadowExpire", change "accountStatus" to "noaccess"; else do nothing. 3) Change your imap/pop authenticator module to check the "accountStatus" attribute: if the value is "noaccess", well, do not permit your user to access it. Better do it on imap/pop, to prevent use of other clients then webmail. 4) Check imap/pop authenticators that comes with qmail-ldap or look at courier-imap-ldap. On courier, you can have a filter like "(accountStatus=active)". 5) Now the difficult part, change your webmail, if you have any, to change "shadowExpire" to the next date the user will have to change it. What about that? -- Bye, Fernando Maciel Souto Maior [EMAIL PROTECTED] http://www.araujo.com.br +55+31 3270-5886 LPIC/1 # 31908 AVISO------------------------------------------------------------- Esta mensagem pode conter informacao confidencial ou privilegiada. Se voce nao for o destinatario ou a pessoa autorizada a receber esta mensagem, nao pode usar, copiar ou divulgar as informacoes nela contidas ou tomar qualquer acao baseada nessas informacoes. Se voce recebeu esta mensagem por engano, favor avisar o remetente imediatamente, respondendo o e-mail e em seguida apagando-o. Obrigado pela cooperacao. DISCLAIMER-------------------------------------------------------- This message may contain confidential and/or privileged information. If you are not the addressee or authorized to receive this for the addressee, you must not use, copy, disclose or take any action based on any information herein. If you have received this message in error, please advise the sender immediately by replying to this e-mail and delete this message. Thank you for your cooperation. ------------------------------------------------------------------ This email was sent using SquirrelMail - http://squirrelmail.org
