Bug 1518761
Summary: | [F28 change] dovecot should not require tcp_wrappers | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Jakub Jelen <jjelen> |
Component: | dovecot | Assignee: | Michal Hlavinka <mhlavink> |
Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | rawhide | CC: | bennie.joubert, dan, janfrode, mhlavink, nmavrogi, pokorra.mailinglists |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | dovecot-2.2.33.2-2.fc28 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2018-01-08 13:11:41 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1495181, 1596070 |
Description
Jakub Jelen
2017-11-29 14:49:56 UTC
I just wonder if there really is reason for this. Given that we've already removed tcp_wrappers from dovecot twice. And twice we've got requests from fedora users and rhel customers that they want it back, that they agree it does not provide the security required, but they want it as yet another layer. My guess is that if we remove it (again) we will be adding it back (again) later. Thank you for the comment. Can you point out to such requests, asking for this support? Removing it ad-hoc and in single component is indeed confusing, but if it will go away from whole system (since many upstreams are leaving it), it should be better accepted. The fedora change lists several migration paths including socket-activation and tcpd, which should have quite the same functionality. The point here is not to build against it and not to use it out of the box and everywhere. |