[Top] [All Lists]

Re: sieve/managesieve/time and ACL

2006-05-13 07:48:06

Ned Freed writes:
> The implication here is that you might want to check fileinto validity
> in managesieve.

Right, with emphasis on the might. I'm all in favour if picking
low-hanging fruit.

>  I'm very dubious about this being a good idea - in addition to ACLs
> changing after the fact, there's also the issue of uploading the
> sieve referring to the mailbox before the mailbox is created.

I believe that managesieve, as well as pretty much every other piece of
software, should perform all the sanity checks it easily can. If
putscript can easily check more than just syntax, it should.

Again, this check seems like it forces an unnecessary ordering on how users
set things up. I don't think that's a good idea.

> I also suspect that in many architectures it would be quite difficult
> to perform such a check. It certainly is next to impossible to do a
> meaningful check of this sort in ours.

Then don't do it ;)

I wouldn't even if it was easy to do.

>> What should happen when a message arrives and the script wants to
>> fileinto? I can't find any mention at all of access control in 3028bis,
>> far less of access control which changes after the sieve is blessed by
>> managesieve.

> We handle this case essentially by converting the fileinto into a
> keep. I don't thinking requiring such behavior is a good idea,
> however, we might want to point out the issue and suggest this as one
> way to deal with it.

Yes (in a more general form, ideally).

In any case, some discussion of how to handle error conditions that creep
in between sieve evaluation and execution of the resulting actions would
be fine.


<Prev in Thread] Current Thread [Next in Thread>