From owner-freebsd-questions  Sun Sep 14 03:03:04 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id DAA03556
          for questions-outgoing; Sun, 14 Sep 1997 03:03:04 -0700 (PDT)
Received: from nic.7da.nl (nic.7da.nl [195.108.246.98])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id DAA03551
          for <freebsd-questions@FreeBSD.ORG>; Sun, 14 Sep 1997 03:02:59 -0700 (PDT)
Received: from psd.7da.nl [195.108.246.100] by nic.7da.nl
        id MAA31975; Sun, 14 Sep 1997 12:06:21 +0200
Received: from localhost [127.0.0.1] by gromit.nev.ml.org
	id MAA00456; Sun, 14 Sep 1997 12:05:50 +0200
Date: Sun, 14 Sep 1997 12:05:50 +0200 (MET DST)
From: Paul Dekkers <paul@nev.ml.org>
To: Doug White <dwhite@resnet.uoregon.edu>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: IMAP
In-Reply-To: <Pine.BSF.3.96.970913211748.918I-100000@localhost>
Message-ID: <Pine.LNX.3.96.970914120342.172B-100000@gromit.nev.ml.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

On Sat, 13 Sep 1997, Doug White wrote:

>On Sat, 13 Sep 1997, Paul Dekkers wrote:
>
>> On Thu, 11 Sep 1997, Doug White wrote:
>> 
>> >> I have a question about IMAP; I installed the IMAP port from the port
>> >> collection on my FreeBSD 2.2.1 CD, but after compiling I get an error
>> >> using pine in combination with IMAP. I get the following error message:
>> >> '{gromit.nev.ml.org}INBOX : Error creating /var/mail/paul.lock.87341562.18.19g'
>> >> 
>> >> What can I do against it? I got the same message using Linux btw...
>> >> Please CC the reply to me, I'm not subscribed to the list...
>> >
>> >Make sure that /var/mail has perms 775.
>> 
>> but in that case the owner has to be GID users or smth so that people with
>> GID users can create lockfiles?
>> but I don't want to let them put trash to it, is that possible? now they
>> can write over there... :-(
>
>Oh, the other part of it is make it owned by bin:bin.
>
>drwxrwxr-x   2 bin     bin       512 May 20 14:31 mail/
>
>This way sendmail et.al. can write stuff in there, but run as someone
>other than bin, such as a user.  But not just anyone can dump stuff in
>there.

I tried, but I thought imap wanted to create the lockfiles with the user
as owner?! At least, when I changed mail's perms to bin.users and
drwxrwxr-x theproblem disappeared...

>I made that change after the IMAP problem; they had some suggestions for
>setting up /var/mail perms for best results.

by another way; isn't imap really unsafe? as a normal user I can view the
root filesystem, even with no shell or ftp account!? (and also when I've
an account with limited root)

-= Paul =-
 __   _
/  |_| |
  / _ \     Paul Dekkers (paul@gromit.eu.org)
 | o o `.    _
 |      O   |_| |  discover Atomic Infinity!!!
  `.___/    | | |  http://library.advanced.org/12082/
 /`  \