[Dovecot] data retention and e-discovery rules
Hello All, I am in the United States where we have e-discovery rules. Some organizations have to retain data for a certain amount of time, others are required to have a data retention policy. This means that while it should probably be possible for a user to delete an email so they do not see it. The server needs to store it, possibly in a tree that mirrors the folder setup of the user (so if it is in Sales folder, it should move to namespace hidden, or similar, in folder Sales). Is there anything like this in dovecot? Is it possible to use cron jobs to see when the message was deleted (Maildir) and erase it based on policy? (Python scripts are fine if the users password isn't needed.) Thank you, Trever Adams signature.asc Description: OpenPGP digital signature
Re: [Dovecot] data retention and e-discovery rules
On Tue, 2008-12-02 at 10:02 -0700, Trever L. Adams wrote: Hello All, I am in the United States where we have e-discovery rules. Some organizations have to retain data for a certain amount of time, others are required to have a data retention policy. This means that while it should probably be possible for a user to delete an email so they do not see it. The server needs to store it, possibly in a tree that mirrors the folder setup of the user (so if it is in Sales folder, it should move to namespace hidden, or similar, in folder Sales). Is there anything like this in dovecot? Is it possible to use cron jobs to see when the message was deleted (Maildir) and erase it based on policy? (Python scripts are fine if the users password isn't needed.) One possibility is http://wiki.dovecot.org/Plugins/Lazyexpunge signature.asc Description: This is a digitally signed message part
Re: [Dovecot] data retention and e-discovery rules
Timo Sirainen wrote: One possibility is http://wiki.dovecot.org/Plugins/Lazyexpunge This is exactly what I am looking for, except two things: The cron job shown on that URL seems to not work off of the date the message was deleted. Am I correct? The URL mentions that it should be possible to keep the user from accessing the namespaces, is this under the namespace configuration? Thank you, Trever Adams signature.asc Description: OpenPGP digital signature
Re: [Dovecot] data retention and e-discovery rules
On Dec 2, 2008, at 7:47 PM, Trever L. Adams wrote: Timo Sirainen wrote: One possibility is http://wiki.dovecot.org/Plugins/Lazyexpunge This is exactly what I am looking for, except two things: The cron job shown on that URL seems to not work off of the date the message was deleted. Am I correct? It uses -cmin, meaning the message's ctime. It's usually the delete time (ctime gets updated by rename()) but it could also be later if the same message had been copied to another mailbox and it was changed there (expunged, copied, flag changed, etc). You could also use expire plugin which actually uses the delete time. The URL mentions that it should be possible to keep the user from accessing the namespaces, is this under the namespace configuration? Well, there's currently no way to prevent user from accessing them, but security through obscurity works well here :) Just use a namespace prefix that's not easily guessable and set list=no hidden=yes. PGP.sig Description: This is a digitally signed message part