----- Original Message ----- From: "Rick Widmer" <[EMAIL PROTECTED]> > Marcin Soltysiak wrote: > > > ----- Original Message ----- > > From: "Ken Jones" <[EMAIL PROTECTED]> > >>Any votes on which way of specifying directories would be easier > > > >>from the client program's point of view? > > > >>a) full paths > >>b) relative based on user or command > > > > > > +1 for b) First, it would be a bit like chrooting, so potential exxploits > > would have harder way to get out of ~vpopmail/. Second, would be easier to > > user if there was no need for repeting full path everytime. > > I disagree. If he chooses b, then you have to worry about what the > rights of the current user is when composing commands. If he uses full > paths, it doesn't matter what kind of user is at the browser, you always > send the same command. > > For example, using b to create a VacationMessage file for [EMAIL PROTECTED]: > > Sys Admin would send: > > write_file /test.com/user/VacationMessage > > The Domain admin would send: > > write_file /user/VacationMessage > > And the user would send: > > write_file /VacationMessage > > It would be much easier to write code for using the daemon if everyone > always referenced that file using the System Admin example, and you > don't have to do the same job three different ways depending on who > happens to be logged in. > > Remember, there will be a whole bunch of PHP code on top of the daemon.
Either I am missing something or... If we use full path then same operations would look like: Sys Admin would send same as The Domain admin would send same as And the user would send: write_file /path/to/vpopmail/home/domains/test.com/user/VacationMessage And this way we let the user know ~vpopmail. I know that in concepts, ordinary user should not use plain vpopmaild protocol but PHP application, but since we don't work in secret I can imagine that one day one of my customers that feels geek in programing would come and request "Hey man, where is your ~vpopmail? I don't like your admin UI and I want to write my own". In case od b) I wouldn't have to tell him the path. He would just stick to write_file /VacationMessage when logging as [EMAIL PROTECTED] Solt