LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 09-24-2011, 03:20 PM   #1
lievendp
Member
 
Registered: Jan 2006
Location: Belgique
Distribution: Gentoo, Debian, Redhat, Centos, (x)Ubuntu
Posts: 111

Rep: Reputation: 27
encrypt email with dovecot server


Hi,
I just setup a mailserver setup isp-style
mta: postfix (antispam, antivirus, ...)
imaps: dovecot with maildir format
backend: ldap users.

problem: I am the administrator on the system and I can thus open all users mailboxes on my system.

I don't want to be able to read other people's mail. Is it possible to make a setup so I cannot read the email? I was thinking that maybe I could encrypt the mails but don't know how to do this.
Another point is that as admin, I can change the passwords of users so even with the ldap password (used to logon to dovecot and to relay with postfix) I should not be able to read the hosted mails.

Is this at all possible?

thanks for any advice.

kind regards.
 
Old 09-25-2011, 09:40 AM   #2
zackwasa
Member
 
Registered: Sep 2011
Posts: 52

Rep: Reputation: Disabled
There are not many solutions here. I found only one discussion about this:
http://www.broadbandreports.com/foru...rypted-Maildir

RMI

Last edited by zackwasa; 01-12-2012 at 02:07 AM.
 
Old 09-25-2011, 06:45 PM   #3
qlue
Member
 
Registered: Aug 2009
Location: Umzinto, South Africa
Distribution: Crunchbang
Posts: 635
Blog Entries: 1

Rep: Reputation: 140Reputation: 140
That system admins can read people's email is a basic fact. The best solution is don't!
 
Old 09-26-2011, 03:44 AM   #4
lievendp
Member
 
Registered: Jan 2006
Location: Belgique
Distribution: Gentoo, Debian, Redhat, Centos, (x)Ubuntu
Posts: 111

Original Poster
Rep: Reputation: 27
Quote:
Originally Posted by qlue View Post
That system admins can read people's email is a basic fact. The best solution is don't!
I can tell people that I will not read their mails and I don't, never did in all my years as admin.
But I would like to make it impossible to guarantee that. However, I can understand that it's just not possible.


rgds,
Lieven
 
Old 09-26-2011, 03:46 AM   #5
lievendp
Member
 
Registered: Jan 2006
Location: Belgique
Distribution: Gentoo, Debian, Redhat, Centos, (x)Ubuntu
Posts: 111

Original Poster
Rep: Reputation: 27
Quote:
Originally Posted by zackwasa View Post
There are not many solutions here. I found only one discussion about this:
http://www.broadbandreports.com/foru...rypted-Maildir

I hope it helps
Thanks for the read.
Will try to find a solution but it's not something to spend too much time on.
 
Old 09-26-2011, 07:20 AM   #6
linux2001
Member
 
Registered: Sep 2011
Posts: 32

Rep: Reputation: Disabled
The best solution is the user encrypt their mail before sending it with public key of the receiver.
Use certificat x509 (public/private keys).
 
1 members found this post helpful.
Old 09-26-2011, 11:04 AM   #7
hua
Member
 
Registered: Oct 2006
Location: Slovak Republic
Distribution: Slackware 13.37, 14.0
Posts: 396

Rep: Reputation: 49
linux2001 is correct. For example Thunderbird supports this function. All you need is to set up the certificates correctly.
The situation is the next - Till you have the root password you can do anything.

At the beginning I was thinking about the same situation - how can I guarantee to my users that their data will not be abused (even by me). That time I set up the server with the required users and services into final state. I installed webmin with limited rights for a local manager who can manage basic user settings and server management.
After this I told them to change the root password (into something what I don't know). Write it and put it into envelop and into a safe-deposit.
This is usually the way with Security Systems (alarms). You as an installer own an INSTALLER code and the local manager gets a MASTER code. You cannot use the INSTALLER code until the manager do not allow you to use it.

So the scenario should look like this: If there is something what you need to do with super user rights they change the root password for you (they can even sit next to you to see that you do not read their mails). You do the job and after this the root password is changed again. (theoretical world)
Don't ask what was the result.

Of course they lost the root password.

Last edited by hua; 09-26-2011 at 11:07 AM.
 
1 members found this post helpful.
Old 09-27-2011, 03:19 AM   #8
lievendp
Member
 
Registered: Jan 2006
Location: Belgique
Distribution: Gentoo, Debian, Redhat, Centos, (x)Ubuntu
Posts: 111

Original Poster
Rep: Reputation: 27
Quote:
Originally Posted by hua View Post
...
So the scenario should look like this: If there is something what you need to do with super user rights they change the root password for you (they can even sit next to you to see that you do not read their mails). You do the job and after this the root password is changed again. (theoretical world)
Don't ask what was the result.

Of course they lost the root password.
hehe, nice story :-) who would have tought they'd loose the root pwd? :-))
Anyway, this kind of solution is not what I'm looking for since I need to work with root rights regularly to test new things on the server and even without root password I'm still able to change / set it anyway so no guarnatees there either.

On the other hand, I can ask the (very few) users to encrypt their mails for a false sense of security. :-) They'll just have to trust to me. (as I do with gmail :P)
 
Old 09-27-2011, 01:03 PM   #9
hua
Member
 
Registered: Oct 2006
Location: Slovak Republic
Distribution: Slackware 13.37, 14.0
Posts: 396

Rep: Reputation: 49
Quote:
Originally Posted by lievendp View Post
On the other hand, I can ask the (very few) users to encrypt their mails for a false sense of security. :-) They'll just have to trust to me. (as I do with gmail :P)
That's it. I get to the same conclusion. The best chance for such users is to choose a person or a company to whom they can really trust. I also learned that I need to be careful what do I tell them - such user should know only what they need (or want) to know.
I mean if you tell them that I (as an administrator) can read your emails - they really start to think about why did you tell this. (you won't do it anyway)

Last edited by hua; 09-27-2011 at 01:08 PM.
 
Old 09-27-2011, 02:23 PM   #10
qlue
Member
 
Registered: Aug 2009
Location: Umzinto, South Africa
Distribution: Crunchbang
Posts: 635
Blog Entries: 1

Rep: Reputation: 140Reputation: 140
Quote:
Originally Posted by hua View Post
I mean if you tell them that I (as an administrator) can read your emails - they really start to think about why did you tell this. (you won't do it anyway)
Paranoia is powerful muti! :lol:.
But you probably don't want to do that to your better paying customers!
 
Old 06-12-2012, 08:15 AM   #11
lievendp
Member
 
Registered: Jan 2006
Location: Belgique
Distribution: Gentoo, Debian, Redhat, Centos, (x)Ubuntu
Posts: 111

Original Poster
Rep: Reputation: 27
Thanks for all the answers (yes, a bit late indeed) :-)

just on a sidenote: I don't have any paying customers for this. it's a best-effort thing for family and relatives etc.
 
  


Reply

Tags
dovecot, encrypt, maildir, postfix, security


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Mail Server with : Postfix,dovecot. (Can send email, but can't receive email from internet mail) cparapat Linux - Server 1 08-16-2010 01:57 AM
[SOLVED] Postfix/Dovecot email server - can't send emails the big cheese Linux - Server 10 11-10-2009 12:44 PM
Email Server issues Sendmail / Dovecot / Webmin dudemcdudedude Linux - Server 2 08-27-2008 05:10 PM
EMail server setup: FC6+Postfix+Dovecot+Squirrelmail rdnewman Linux - Networking 5 08-04-2007 07:59 PM
Configuring and Email Server with Squirrelmail, sendmail and dovecot. ashesh0326 Linux - Server 6 04-08-2007 02:15 AM


All times are GMT -5. The time now is 04:38 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration