[Dovecot] Encryption solution for messages at rest

Reindl Harald h.reindl at thelounge.net
Wed Oct 30 17:11:28 EET 2013



Am 30.10.2013 15:54, schrieb Michael Orlitzky:
> On 10/30/2013 09:01 AM, Benny Pedersen wrote:
>> Michael Orlitzky skrev den 2013-10-28 20:49:
>>
>>>   php_admin_value open_basedir /var/www/$domain/$host/
>>>   php_admin_value upload_tmp_dir /var/www/$domain/$host/tmp
>>>   php_admin_value session.save_path /var/www/$domain/$host/tmp
>>>   php_admin_value sys_temp_dir /var/www/$domain/$host/tmp
>>
>> so dont create tmp upload dirs in webroot, this is classic way of 
>> showing no care
> 
> DocumentRoot is /var/www/$domain/$host/public

and so open_basedir should be the same and *not* include
"upload_tmp_dir" and "session.save_path", otherwise this
all is nonsense from security point of view

and to come back to topic:
do *not* install a public webserver on your mailserver - period

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 263 bytes
Desc: OpenPGP digital signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20131030/eb5487eb/attachment.bin>


More information about the dovecot mailing list