* [9fans] Creating new mail users; mail -c
@ 2010-03-22 3:53 Anthony Sorace
2010-03-22 5:40 ` Russ Cox
2010-03-22 13:37 ` erik quanstrom
0 siblings, 2 replies; 8+ messages in thread
From: Anthony Sorace @ 2010-03-22 3:53 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
[-- Attachment #1: Type: text/plain, Size: 175 bytes --]
On my system, /mail/box is mode 775. This matches what's on sources.
So... how is the mail -c call in newuser supposed to work for normal
(ie: not in group sys) users?
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 201 bytes --]
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 3:53 [9fans] Creating new mail users; mail -c Anthony Sorace
@ 2010-03-22 5:40 ` Russ Cox
2010-03-22 13:37 ` erik quanstrom
1 sibling, 0 replies; 8+ messages in thread
From: Russ Cox @ 2010-03-22 5:40 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
It doesn't. Such users have to ask nicely for
someone to create the mailbox directory on the
file system console.
Russ
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 3:53 [9fans] Creating new mail users; mail -c Anthony Sorace
2010-03-22 5:40 ` Russ Cox
@ 2010-03-22 13:37 ` erik quanstrom
2010-03-22 14:50 ` roger peppe
1 sibling, 1 reply; 8+ messages in thread
From: erik quanstrom @ 2010-03-22 13:37 UTC (permalink / raw)
To: 9fans
> So... how is the mail -c call in newuser supposed to work for normal
> (ie: not in group sys) users?
this is how the permissions were set up in 2005 on my machine:
; ls -ld /mail/box
d-rwxrwxrwx M 456741 upas upas 0 Jul 15 2009 /mail/box
- erik
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 13:37 ` erik quanstrom
@ 2010-03-22 14:50 ` roger peppe
2010-03-22 20:20 ` Francisco J Ballesteros
0 siblings, 1 reply; 8+ messages in thread
From: roger peppe @ 2010-03-22 14:50 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
On 22 March 2010 13:37, erik quanstrom <quanstro@quanstro.net> wrote:
>> So... how is the mail -c call in newuser supposed to work for normal
>> (ie: not in group sys) users?
>
> this is how the permissions were set up in 2005 on my machine:
>
> ; ls -ld /mail/box
> d-rwxrwxrwx M 456741 upas upas 0 Jul 15 2009 /mail/box
looks dangerous to me - won't that allow anyone to
rename mailboxes and intercept mail?
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 14:50 ` roger peppe
@ 2010-03-22 20:20 ` Francisco J Ballesteros
2010-03-22 20:55 ` erik quanstrom
0 siblings, 1 reply; 8+ messages in thread
From: Francisco J Ballesteros @ 2010-03-22 20:20 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
It would help being able to "append" to a directory, i.e., being able to
create new files but not to, say, remove, already created files.
mail2fs has the same problem. I run it from a cron on my name, thus my folders
have 770 or 775 and not 777. But, if you want to run this, say, as
user none, you
need to open it up.
On Mon, Mar 22, 2010 at 3:50 PM, roger peppe <rogpeppe@gmail.com> wrote:
> On 22 March 2010 13:37, erik quanstrom <quanstro@quanstro.net> wrote:
>>> So... how is the mail -c call in newuser supposed to work for normal
>>> (ie: not in group sys) users?
>>
>> this is how the permissions were set up in 2005 on my machine:
>>
>> ; ls -ld /mail/box
>> d-rwxrwxrwx M 456741 upas upas 0 Jul 15 2009 /mail/box
>
> looks dangerous to me - won't that allow anyone to
> rename mailboxes and intercept mail?
>
>
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 20:20 ` Francisco J Ballesteros
@ 2010-03-22 20:55 ` erik quanstrom
2010-03-22 21:24 ` David Leimbach
0 siblings, 1 reply; 8+ messages in thread
From: erik quanstrom @ 2010-03-22 20:55 UTC (permalink / raw)
To: 9fans
On Mon Mar 22 16:22:15 EDT 2010, nemo@lsub.org wrote:
> It would help being able to "append" to a directory, i.e., being able to
> create new files but not to, say, remove, already created files.
i considered modifying the fileserver to do something similar
for nupas. perhaps reusing the 'a' bit. but in the end, i didn't
do it as we weren't having a problem. i use the mode 773 for
mailboxes which can be delivered to by other users and 700
for mailboxes which can't be delivered to by other users. denying
read access at least makes it annoying to guess all the mail files
in the mbox.
(thanks to anthony for a recent fix to splitmbox.)
russ had a specific objection to "append" directories. i don't
recall how the argument went.
- erik
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 20:55 ` erik quanstrom
@ 2010-03-22 21:24 ` David Leimbach
2010-03-22 21:29 ` erik quanstrom
0 siblings, 1 reply; 8+ messages in thread
From: David Leimbach @ 2010-03-22 21:24 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
[-- Attachment #1: Type: text/plain, Size: 967 bytes --]
On Mon, Mar 22, 2010 at 1:55 PM, erik quanstrom <quanstro@quanstro.net>wrote:
> On Mon Mar 22 16:22:15 EDT 2010, nemo@lsub.org wrote:
> > It would help being able to "append" to a directory, i.e., being able to
> > create new files but not to, say, remove, already created files.
>
> i considered modifying the fileserver to do something similar
> for nupas. perhaps reusing the 'a' bit. but in the end, i didn't
> do it as we weren't having a problem. i use the mode 773 for
> mailboxes which can be delivered to by other users and 700
> for mailboxes which can't be delivered to by other users. denying
> read access at least makes it annoying to guess all the mail files
> in the mbox.
>
> (thanks to anthony for a recent fix to splitmbox.)
>
> russ had a specific objection to "append" directories. i don't
> recall how the argument went.
>
Is it because you can bind in new stuff to a directory if you need it?
>
> - erik
>
>
[-- Attachment #2: Type: text/html, Size: 1524 bytes --]
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: [9fans] Creating new mail users; mail -c
2010-03-22 21:24 ` David Leimbach
@ 2010-03-22 21:29 ` erik quanstrom
0 siblings, 0 replies; 8+ messages in thread
From: erik quanstrom @ 2010-03-22 21:29 UTC (permalink / raw)
To: 9fans
> > russ had a specific objection to "append" directories. i don't
> > recall how the argument went.
> >
>
> Is it because you can bind in new stuff to a directory if you need it?
not really. it was related to the problems with /tmp directories
in linux.
consider a standard unix-style mailbox. if you make the file
append-only, but world writable (not world-readable), anyone
can append a message to your mailbox, but only you can rewrite
it or read it.
the thought is that it would be nice to have a similar capablity
with a directory, where the permission to remove is seperated from
the permission to create.
- erik
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2010-03-22 21:29 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-03-22 3:53 [9fans] Creating new mail users; mail -c Anthony Sorace
2010-03-22 5:40 ` Russ Cox
2010-03-22 13:37 ` erik quanstrom
2010-03-22 14:50 ` roger peppe
2010-03-22 20:20 ` Francisco J Ballesteros
2010-03-22 20:55 ` erik quanstrom
2010-03-22 21:24 ` David Leimbach
2010-03-22 21:29 ` erik quanstrom
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).