[imp] Fwd: Re: Webmail Administration>

Arnold Krille arnold at arnoldarts.de
Tue Jul 24 21:31:07 UTC 2012


On Tue, 24 Jul 2012 15:45:32 -0400 David Goldfield
<dgoldfield at gmail.com> wrote:
> Would it be better to first determine the authentication method for
> all accounts, LDAP or mySQL,

Knowing how the system in its actual instance is working is always a
good idea. Knowing that before asking wildcard-questions would have
been an even better idea, but we can't have it all...

> and then delete the encrypted password
> in the database for admin account, then login with no password from
> the web interface?

If the system is set up well, deleting the encrypted passwords will
disable the ability to login at all. Its better to understand which
encryption method is used and then set a known password with the
fitting encryption.

> Would this then show admin functions in the
> browser?

If there is a dedicated admin-user that you can't yet access because of
a currently unknown password, then the answer is yes. Otherwise the
answer is no because imp/horde doesn't limit the admin-ability to a
certain user/group.

Please do some homework and learn how your system manages its email/imp
users. Most probably its not the way you think it is:

> How do we manage email accounts in IMP?

This is totally up to the admin implementing the system and not
pre-defined by horde/imp. You can set it up so that imap (note the
extra 'a') and horde use the same authorization, you can set it up so
that horde uses imap as authorization-provider, but you can also set it
up completely different...

Have fun,

Arnold

PS: While you might curse the previous admin, that fact that you don't
understand the system isn't necessarily his fault. And from our
experience of >17 years of inheriting systems of other admins:
Documentation for others to inherit your systems is at best optional
and stupid in the other cases. If the new admin isn't fit to access a
system without the passwords (but with physical access to the hardware)
or isn't fit to determine the current configuration, they are not worth
the money (something we even had a judge rule against one of our former
clients).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://lists.horde.org/archives/imp/attachments/20120724/17b62c77/attachment.bin>


More information about the imp mailing list