From owner-freebsd-questions@FreeBSD.ORG Tue Jul 5 21:26:27 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E10EE16A41C for ; Tue, 5 Jul 2005 21:26:27 +0000 (GMT) (envelope-from hornetmadness@gmail.com) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.198]) by mx1.FreeBSD.org (Postfix) with ESMTP id 80A0943D48 for ; Tue, 5 Jul 2005 21:26:27 +0000 (GMT) (envelope-from hornetmadness@gmail.com) Received: by rproxy.gmail.com with SMTP id 34so200271rns for ; Tue, 05 Jul 2005 14:26:27 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=WZZm7TNV6egVjbg9J+CkLpnJZwGWyp7SdnJqTMTO17Ml/QqGjVyh7+EBTIRjbDBHlwBF+v8qZadmc2TInScJGtb3OsBajJV7uXfbWlupHtbZC2bw6Nb+B/ogrExAoZGY6f/IyGhNBHxCMx3kTM+XS/by8iZgDbA0RLvNXQ90Qk8= Received: by 10.38.195.4 with SMTP id s4mr2942979rnf; Tue, 05 Jul 2005 14:26:27 -0700 (PDT) Received: by 10.38.8.44 with HTTP; Tue, 5 Jul 2005 14:26:27 -0700 (PDT) Message-ID: Date: Tue, 5 Jul 2005 17:26:27 -0400 From: Hornet To: Matt Juszczak In-Reply-To: <20050705145350.W37501@neptune.atopia.net> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <20050705145350.W37501@neptune.atopia.net> Cc: freebsd-questions@freebsd.org Subject: Re: Remote access to a user's mail spool X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Hornet List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2005 21:26:28 -0000 I would have to say that, for what you are trying to do, you are going the long way about it. If I was to be stuck having to this, I would make a php/perl script with web GUI that just pares out the users subjects and adds a check box and delete button. Security can be implemented in so many ways with Apache that I would recommend that you read the Apache manual. I would go so far as setting an IP alias on the interface and limiting the networks that can access the script. Or just lock the shell access correctly. Erik On 7/5/05, Matt Juszczak wrote: > Hi all, >=20 > We're an ISP, and we are currently looking for a way for our tech support > guys to access customer's email without having shell access to the server= , > or knowing the customer's password. >=20 > We'd like to install a custom webmail client on our private internal LAN > webserver that would only show the user's inbox and the ability to delete > the messages (couldn't read messages, etc.). The problem is that we woul= d > have to know the user's password in order for my PHP script to go out and > fetch the mail. >=20 > Is there a way I can setup and/or patch one of the POP3 clients (of cours= e > I would firewall this and do an SSH tunnel with the pop3d running on > localhost only on the mail server, so I would keep things secure) so that > it could be given any random password and would authenticate? >=20 > Or is this some kind of patch I would need to write? Maybe a better > option would be to write a custom client/server interface via ssh to > interact with the mail spool (possibly calling "mail" over ssh remotely, > with public/private key authentication and sudo access to mail for the > remote account).... >=20 > Any ideas? >=20 > Thanks, >=20 > Matt >=20 > PS: I can admit that I originally posted this to the dovecot mailing list= , > but am now seeing it might be a system-related issue vs. a pop3 daemon > issue. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg" >