On Fri, 3 Jan 2003, Amos Gouaux wrote:
> rs> There's no reason regular users should be submitting to the LMTP server,
> rs> they should be submitting using SMTP to an SMTP server, and then the LMTP
> rs> server trusts the SMTP server. This (admitedly marginaly) simplifies the
> rs> authorization code in lmtpd.
>
> How does the posting ("p") right fit in?
Each message in an LMTP session gets its own authorization identity, which
is checked agains the ACL of the mailbox.
-Rob
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456
Research Systems Programmer * /usr/contributed Gatekeeper
