Re: sieve/managesieve/time and ACL
Ned Freed <ned.freed@mrochek.com> Fri, 12 May 2006 15:04 UTC
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k4CF4b52086509; Fri, 12 May 2006 08:04:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k4CF4bX3086508; Fri, 12 May 2006 08:04:37 -0700 (MST) (envelope-from owner-ietf-mta-filters@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f
Received: from mauve.mrochek.com (206.117.180.234.brandx.net [206.117.180.234] (may be forged)) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k4CF4YXd086502 for <ietf-mta-filters@imc.org>; Fri, 12 May 2006 08:04:35 -0700 (MST) (envelope-from ned.freed@mrochek.com)
Received: from dkim-sign.mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01M2BSS2X0F40089MS@mauve.mrochek.com> for ietf-mta-filters@imc.org; Fri, 12 May 2006 08:04:32 -0700 (PDT)
DKIM-Signature: a=rsa-sha1; c=nowsp; d=mrochek.com; s=mauve; t=1147446139; h=Date: From:Subject:MIME-version:Content-type; b=pwZtMgZ1ynZ4zHSNtxZH3eFGy 1Lpd/yMJPe/ElzYtW3QfbiMK1ZvkJdb2pKs3sF37TUVnLeWt/X+aA2QVWWh4g==
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01M2AG1Y3H0G0008CX@mauve.mrochek.com>; Fri, 12 May 2006 08:04:30 -0700 (PDT)
Cc: ietf-mta-filters@imc.org
To: Arnt Gulbrandsen <arnt@gulbrandsen.priv.no>
Message-id: <01M2BSS2740K0008CX@mauve.mrochek.com>
Date: Fri, 12 May 2006 07:57:53 -0700
From: Ned Freed <ned.freed@mrochek.com>
Subject: Re: sieve/managesieve/time and ACL
In-reply-to: "Your message dated Fri, 12 May 2006 16:33:40 +0200" <P6Fqqy6kGTNfcKPaYJk8AA.md5@libertango.oryx.com>
MIME-version: 1.0
Content-type: TEXT/PLAIN; format="flowed"
References: <P6Fqqy6kGTNfcKPaYJk8AA.md5@libertango.oryx.com>
Sender: owner-ietf-mta-filters@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-ID: <ietf-mta-filters.imc.org>
List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
> Hi, > suppose I upload a script to the server using managesieve. A perfectly > fine script which contain only a fileinto command for the mailbox > /mumble/stumble. The next day, someone who doesn't like me changes the > ACL on /mumble/stumble such that I no longer have the right to insert > messages into it. The implication here is that you might want to check fileinto validity in managesieve. I'm very dubious about this being a good idea - in addition to ACLs changing after the fact, there's also the issue of uploading the sieve referring to the mailbox before the mailbox is created. I also suspect that in many architectures it would be quite difficult to perform such a check. It certainly is next to impossible to do a meaningful check of this sort in ours. > What should happen when a message arrives and the script wants to > fileinto? I can't find any mention at all of access control in 3028bis, > far less of access control which changes after the sieve is blessed by > managesieve. We handle this case essentially by converting the fileinto into a keep. I don't thinking requiring such behavior is a good idea, however, we might want to point out the issue and suggest this as one way to deal with it. Ned
- sieve/managesieve/time and ACL Arnt Gulbrandsen
- Re: sieve/managesieve/time and ACL Cyrus Daboo
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Cyrus Daboo
- Re: sieve/managesieve/time and ACL don@raridon.com
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Arnt Gulbrandsen
- Re: sieve/managesieve/time and ACL Ned Freed
- Re: sieve/managesieve/time and ACL Arnt Gulbrandsen