Re: Ban some users from accessing IMAP

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi,


Quoting Jason L Tibbitts III <tibbs@xxxxxxxxxxx>:


"DM" == Dave McMurtrie <dave64@xxxxxxxxxxxxxx> writes:


DM> The good news is that user_deny.db does exactly what you want.  It
DM> allows you to deny any specific service to a valid user, even if
DM> they can successfully authenticate to your Cyrus server.

Oh, that's what that does.  I see one mention of something in the
imapd.conf manpage but it's just about the format of the database
involved.  (Says it defaults to "flat"; is that a good idea?  I don't
anticipate having more than a handful of users banned in this way.)

I will see if I can whip something up that pulls a group out of ldap and
calls cyr_dbtool appropriately.  Run it from cron and I'll be done.



A few years ago I asked the question how to manage user_deny.db
Below you find the answer from Dan.


Quoting Dan White <dwhite@xxxxxxx>:


On 11/06/10 14:44 +0200, Michael Menge wrote:

Hi,

is there a tool to add/remove a user to/from the user_deny.db?


You can use cyr_dbtool:

touch /var/lib/imap/user_deny.db
chown cyrus:mail /var/lib/imap/user_deny.db
su - cyrus
cyr_dbtool /var/lib/imap/user_deny.db flat set dwhite "2     pop3    Can't
use pop."

For the format of the database value, see:

http://cyrusimap.web.cmu.edu/imapd/internal/database-formats.html

When using the shell, you will need to escape your tabs. In bash, I
typed:

"2<ctrl-v><tab>pop3<ctrl-v><tab>Can't use pop."

And then I get:

telnet localhost 110
Trying 127.0.0.1...
Connected to zek.olp.net.
Escape character is '^]'.
+OK zek Cyrus POP3 v2.3.16 server ready
<17564574347538583243.1276265278@zek>
user dwhite
+OK Name is a valid mailbox
-ERR [SYS/TEMP] Can't use pop.
Connection closed by foreign host.

--
Dan White






--------------------------------------------------------------------------------
M.Menge                                Tel.: (49) 7071/29-70316
Universität Tübingen                   Fax.: (49) 7071/29-5912
Zentrum für Datenverarbeitung mail: michael.menge@xxxxxxxxxxxxxxxxxxxx 
Wächterstraße 76
72074 Tübingen

Attachment: smime.p7s
Description: S/MIME Signatur

----
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
[Index of Archives]     [Cyrus SASL]     [Squirrel Mail]     [Asterisk PBX]     [Video For Linux]     [Photo]     [Yosemite News]     [gtk]     [KDE]     [Gimp on Windows]     [Steve's Art]

  Powered by Linux