[Kolab-devel] Cyrus IMAP groups patch
Thomas Arendsen Hein
thomas at intevation.de
Thu Aug 19 11:40:22 CEST 2010
* Jeroen van Meeuwen (Kolab Systems) <vanmeeuwen at kolabsys.com> [20100817 22:55]:
> I stumble upon the "groups patch" which enables cyrus-imapd to read an
> arbitrary groups file as opposed to using the system getgrent(3) call (if and
> when using the UNIX groups, that is).
>
> Afaik, getgrent(3) will return groups from anything PAM can handle and that
> does groups.
>
> I'm wondering what the use-case behind the groups patch is, and whether
> someone could tell me about a valid production implementation scenario so that
> I can push this upstream. So far, the only use case I can see is parallel
> Kolab deployments using OpenPKG -which of course is not going to be a valid
> argument for upstream, and has alternatives that better align with native
> packaging such as chroots.
We don't want to use the system's group, because usually the Kolab
accounts in LDAP are not system accounts in PAM.
See https://issues.kolab.org/issue2722 for some background.
In short: We don't need the groups patch upstream, we probably want
SASL to know about the group of names in LDAP.
Regards,
Thomas
--
thomas at intevation.de - http://intevation.de/~thomas/ - OpenPGP key: 0x5816791A
Intevation GmbH, Neuer Graben 17, 49074 Osnabrueck - AG Osnabrueck, HR B 18998
Geschaeftsfuehrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
More information about the devel
mailing list