[tpop3d-discuss] Virtual domains using passwd files

Angel Marin anmar at gmx.net
Sat, 8 Jun 2002 20:15:48 +0200

> -----Mensaje original-----
> On Sat, Jun 08, 2002 at 07:30:27PM +0200, Angel Marin wrote:
> > I added a couple things in the configuration file, so everything is
> > customisable:
> >
> > "auth-virtual-mail-user:" system user that can access the mailboxes
> > 	* auth-virtual-mail-user: mail
> >
> > "auth-virtual-mail-group:" system group that can access the mailboxes
> > 	* auth-virtual-mail-group: mail
> These are fixed-- this might be a problem if different
> domains are configured to use different unix users, though
> I suppose it's always possible to fix that with group
> writableness.

Usually your MDA may have this problem, so the aproach may be:
	auth-virtual-mail-user: nobody
	auth-virtual-mail-group: mail

and configure your MDA to write mailboxes 660.

> > "auth-virtual-passwd-file:" selects the location of the
> password file for
> > the domains you can use the substitution string $(domain)
> > 	* auth-virtual-passwd-file: /etc/domains/$(domain)/shadow
> ... but it must be in /etc/passwd format, not /etc/shadow
> format, on machines where those are different. I guess
> that's not many nowadays.

As only username and password fields are used you can use new /etc/shadow
format or /etc/passwd format (as they have the same number of fields), I
named it shadow to note that you can have a passwd file readable by your
MTA/MDA user and a shadow one readable by your tpop3d user.

> > To do:
> >
> > 	Modify configure & makefile
> > 	Any suggestion ?
> This all looks pretty plausible and I'm happy to include
> it in tpop3d. I guess it's a bit leaner than implementing
> it in perl....
> I take it that you're happy for it to be included in the
> distribution?

Of course, if you find it useful.