I agree. Even though our server running squirrel is ONLY running squirrel and no other sites, and no users but our staff have access, we chose NOT to run Apache as vpopmail. Instead the PHP scripts write data to a file and a cron job running as vpopmail on a 5 minute cycle does sanity checks and processes the request.-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jean Wainer wrote:<snip>There's a "vpopmail" plugin for squirrelmail. The only catch is thatyou have to run apache as "vpopmail" user. Thus giving anyone that has web access or is allowed to run PHP scripts on your server the allowance to play with vpopmail as much as they want. If this is just a webmail based server i do think it is okay, but if i were you i would still be worried.
X-Istence wrote:
- [vchkpw] Change passwd howto Patrick Donker
- Re: [vchkpw] Change passwd howto Jean Wainer
- Re: [vchkpw] Change passwd howto Patrick Donker
- Re: [vchkpw] Change passwd howto Jean Wainer
- Re: [vchkpw] Change passwd howto Patrick Donker
- Re: [vchkpw] Change passwd howto X-Istence
- Re: [vchkpw] Change passwd howto Jean Wainer
- Re: [vchkpw] Change passwd howto X-Istence
- Re: [vchkpw] Change passwd howto Rod K
- Re: [vchkpw] Change passwd howto Patrick Donker
- [vchkpw] Change passwd howto Patrick Donker
- Re: [vchkpw] Change passwd howto X-Istence
- Re: [vchkpw] Change passwd howto Rakesh Tiwari
- Re: [vchkpw] Change passwd howto Raboo Treed
- Re: [vchkpw] Change passwd howto Patrick Donker
- Re: [vchkpw] Change passwd howto X-Istence
- Re: [vchkpw] Change passwd howto Rick Widmer
- Re: [vchkpw] Change passwd howto X-Istence
- Re: [vchkpw] Change passwd ho... Rick Widmer
