Re: sieve/managesieve/time and ACL
Arnt Gulbrandsen <arnt@gulbrandsen.priv.no> Fri, 12 May 2006 17:56 UTC
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k4CHuDHI017301; Fri, 12 May 2006 10:56:13 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k4CHuD24017300; Fri, 12 May 2006 10:56:13 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f
Received: from kalyani.oryx.com (kalyani.oryx.com [195.30.37.30]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k4CHuBuv017293 for <ietf-mta-filters@imc.org>; Fri, 12 May 2006 10:56:12 -0700 (MST) (envelope-from arnt@gulbrandsen.priv.no)
Received: from libertango.oryx.com (libertango.oryx.com [195.30.37.9]) by kalyani.oryx.com (Postfix) with ESMTP id EE0864AC3A; Fri, 12 May 2006 19:56:10 +0200 (CEST)
Message-Id: <8lojjOJ0LiRYfWrumr19dw.md5@libertango.oryx.com>
Date: Fri, 12 May 2006 19:59:59 +0200
From: Arnt Gulbrandsen <arnt@gulbrandsen.priv.no>
To: ietf-mta-filters@imc.org
Subject: Re: sieve/managesieve/time and ACL
Cc: Ned Freed <ned.freed@mrochek.com>
Content-Type: text/plain; format="flowed"
MIME-Version: 1.0
Sender: owner-ietf-mta-filters@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-ID: <ietf-mta-filters.imc.org>
List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
Ned Freed writes: > The implication here is that you might want to check fileinto validity > in managesieve. Right, with emphasis on the might. I'm all in favour if picking low-hanging fruit. > I'm very dubious about this being a good idea - in addition to ACLs > changing after the fact, there's also the issue of uploading the > sieve referring to the mailbox before the mailbox is created. I believe that managesieve, as well as pretty much every other piece of software, should perform all the sanity checks it easily can. If putscript can easily check more than just syntax, it should. > I also suspect that in many architectures it would be quite difficult > to perform such a check. It certainly is next to impossible to do a > meaningful check of this sort in ours. Then don't do it ;) >> What should happen when a message arrives and the script wants to >> fileinto? I can't find any mention at all of access control in 3028bis, >> far less of access control which changes after the sieve is blessed by >> managesieve. > > We handle this case essentially by converting the fileinto into a > keep. I don't thinking requiring such behavior is a good idea, > however, we might want to point out the issue and suggest this as one > way to deal with it. Yes (in a more general form, ideally). Arnt
- sieve/managesieve/time and ACL Arnt Gulbrandsen
- Re: sieve/managesieve/time and ACL Cyrus Daboo
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Cyrus Daboo
- Re: sieve/managesieve/time and ACL don@raridon.com
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Arnt Gulbrandsen
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Arnt Gulbrandsen