2 Replies Latest reply on Apr 28, 2004 4:43 AM by Andrew Oliver

    Mail Services Policy proposal (unify the security stuff)

    Andrew Oliver Master

      Hey all,

      I'm trying to think my way though how to unify the security stuff. I shutter whenever someone says ACL/ACEs due to my experience with the low level innards of Windows ACLs and with other implementations. So I'm starting with something simple minded:

      http://jboss.org/wiki/Wiki.jsp?page=MailServicesPolicyMBean

      This would more or less replace the code in JMSMailListener and SMTPProtocolInstance (handleAuth) which determines whether users are local, can be relayed to etc.

      Please ask if you have questions or need more details.

      If you think this is good for now, I'd also like help filling out more areas of policy. I left POP/IMAP pretty much to requireTLS or not.

      If you don't like it, please tell me why and propose something better.

      Now I guess I need to think about mail lists.

      Thanks,

      -Andy