On 09/13/2013 11:36 AM, Peter Peltonen wrote:
Hi, On Fri, Sep 13, 2013 at 4:33 AM, Eric Shubert <[email protected] <mailto:[email protected]>> wrote: I know it seems cumbersome, but it's really not all that bad. Administrators should be able to change passwords, but not see in any way what they currently are. What's the point of encrypting a password if someone can decrypt it? That's not the way encryption works. It's a one-way street (which is why it works). "Who's watching the watchers?" - Enemy Of The State (movie, IIRC) ;) Ok I get this. But what about my other suggestion: "An another option would be to make the postmaster password a master password that could be used to access all accounts in that domain." ? Best, Peter
I think that's the case with qmailadmin to some extent. The postmaster can control all accounts in the domain.
What would be the purpose of allowing the postmaster to read/delete people's emails?
The QMT administrator can of course grep through emails and look at them with "less" or whatever tools are available there. I would like to see an option where even this would not be possible. I'm not in favor of using the mbox format though (in case someone's wondering).
The objective here is to ensure that emails are as private as possible, and the user is entirely in control as much as practical.
-- -Eric 'shubes' --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
