Re: Mail-server config
Johannes Weiss ([EMAIL PROTECTED]) wrote: Hi @all, I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Consider the cyrus-packages. - Rolf -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mail-server config
Thus spake Johannes Weiss ([EMAIL PROTECTED]): I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. -- Justin R. Miller [EMAIL PROTECTED] PGP/GnuPG Key ID 0xC9C40C31 (preferred) msg04321/pgp0.pgp Description: PGP signature
Re: Mail-server config
On Wed, Nov 21, 2001 at 10:51:57AM -0500, Justin R. Miller wrote: Thus spake Johannes Weiss ([EMAIL PROTECTED]): I plan to install a mailserver for ca. 800 users, now I planned to Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. Also note that the Debian packages for Cyrus are old, from a branch that is not being developed any more. I think your best bet is to download the source and compile your own. That's what I'm doing for a family-and-friends mailserver. I might come up with a .deb for my own use, but don't hold your breath... There is a wishlist bug for 2.x. This is getting off topic. -sami. -- ...you want a .sig with that? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mail-server config
On Wed, Nov 21, 2001 at 04:34:46PM +0100, Johannes Weiss wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi @all, I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Most modern MTAs have support for some sort of non-system based user database (LDAP etc.). I know postfix has support for virtual maps and such, see www.postfix.org http://kummefryser.dk/HOWTO/mail/postfix_mysql.html. You would then need to find an imap/pop server that could use the same thing. This would be much easier to maintain securely. -- Share and Enjoy. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mail-server config
On Wed, Nov 21, 2001 at 09:56:28AM -0800, Sami Juvonen wrote: On Wed, Nov 21, 2001 at 10:51:57AM -0500, Justin R. Miller wrote: Thus spake Johannes Weiss ([EMAIL PROTECTED]): I plan to install a mailserver for ca. 800 users, now I planned to Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. Also note that the Debian packages for Cyrus are old, from a branch that is not being developed any more. I think your best bet is to download the source and compile your own. That's what I'm doing for a family-and-friends mailserver. I might come up with a .deb for my own use, but don't hold your breath... There is a wishlist bug for 2.x. This is getting off topic. -sami. I think that the easiest thing (not necesarily the best one) will be to write simple bashawk script to add users directly to passwd. The shell should be /bin/false - message that you can't get in (without invoking any real shells). Advantages: easy to perform, easy to manage Disadvantages: possible mess in passwd if you have pop3-only and normal users. Jaroslaw Postawa [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mail-server config
[EMAIL PROTECTED] (Sami Juvonen) writes: Also note that the Debian packages for Cyrus are old, from a branch that is not being developed any more. I think your best bet is to download the source and compile your own. That's what I'm doing for a family-and-friends mailserver. I might come up with a .deb for my own use, but don't hold your breath... No need for it :) http://people.debian.org/~hmh/cyrus2/ -- begin OjE-ist-scheisse.txt bye, Joerg Registered Linux User #97793 @ http://counter.li.org end -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Mail-server config
Johannes Weiss ([EMAIL PROTECTED]) wrote: Hi @all, I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Consider the cyrus-packages. - Rolf
Re: Mail-server config
Thus spake Johannes Weiss ([EMAIL PROTECTED]): I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. -- Justin R. Miller [EMAIL PROTECTED] PGP/GnuPG Key ID 0xC9C40C31 (preferred) pgpFCAIgboMkR.pgp Description: PGP signature
Re: Mail-server config
On Wed, Nov 21, 2001 at 10:51:57AM -0500, Justin R. Miller wrote: Thus spake Johannes Weiss ([EMAIL PROTECTED]): I plan to install a mailserver for ca. 800 users, now I planned to Have a look at Cyrus IMAP. It's designed for POP3/IMAP for non-shell users, i.e. a closed-box system. the authentication _can_ be /etc/passwd-based, but typically you use a separate DB file to store the login info. Also note that the Debian packages for Cyrus are old, from a branch that is not being developed any more. I think your best bet is to download the source and compile your own. That's what I'm doing for a family-and-friends mailserver. I might come up with a .deb for my own use, but don't hold your breath... There is a wishlist bug for 2.x. This is getting off topic. -sami. -- ...you want a .sig with that?
Re: Mail-server config
On Wed, Nov 21, 2001 at 04:34:46PM +0100, Johannes Weiss wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi @all, I plan to install a mailserver for ca. 800 users, now I planned to make 800 users with shell /bin/bash, home /dev/nul,... So, I ask you ;)), if this is a good solution, to make 800 UNIX-users for a mailserver and if not what's the best solution (security reason) Most modern MTAs have support for some sort of non-system based user database (LDAP etc.). I know postfix has support for virtual maps and such, see www.postfix.org http://kummefryser.dk/HOWTO/mail/postfix_mysql.html. You would then need to find an imap/pop server that could use the same thing. This would be much easier to maintain securely. -- Share and Enjoy.
Re: Mail-server config
[EMAIL PROTECTED] (Sami Juvonen) writes: Also note that the Debian packages for Cyrus are old, from a branch that is not being developed any more. I think your best bet is to download the source and compile your own. That's what I'm doing for a family-and-friends mailserver. I might come up with a .deb for my own use, but don't hold your breath... No need for it :) http://people.debian.org/~hmh/cyrus2/ -- begin OjE-ist-scheisse.txt bye, Joerg Registered Linux User #97793 @ http://counter.li.org end