Mail Services Policy proposal (unify the security stuff)

acoliver Feb 13, 2004 3:15 PM

Hey all,

I'm trying to think my way though how to unify the security stuff. I shutter whenever someone says ACL/ACEs due to my experience with the low level innards of Windows ACLs and with other implementations. So I'm starting with something simple minded:

http://jboss.org/wiki/Wiki.jsp?page=MailServicesPolicyMBean

This would more or less replace the code in JMSMailListener and SMTPProtocolInstance (handleAuth) which determines whether users are local, can be relayed to etc.

Please ask if you have questions or need more details.

If you think this is good for now, I'd also like help filling out more areas of policy. I left POP/IMAP pretty much to requireTLS or not.

If you don't like it, please tell me why and propose something better.

Now I guess I need to think about mail lists.

Thanks,

-Andy

1. Re: Mail Services Policy proposal (unify the security stuff)

kabirkhan Apr 26, 2004 12:50 PM (in response to acoliver)

I think the a static interface should be OK? As I understand it the policy will be internal to the mail stuff, so if we need to recompile classes when the interface changes shouldn't matter too much. If we went with dynamic would we not need to compile changes in affected areas anyway to make use of the new permissions?

Since we have the SSL stuff in addition to TLS now, that would need some policies as well.
Actions
2. Re: Mail Services Policy proposal (unify the security stuff)

acoliver Apr 28, 2004 4:43 AM (in response to acoliver)

True, I'm afraid it will become a store of opaque parameters rather than simple attributes... Never could decide.

Yes.
Actions

Go to original post