What exactly is lrswipkxtecda in Cyrus? I've gathered from here that it has something to do with ACLs for the mailboxes in Cyrus but can someone shed some more light on it? Do the individual letters stand for something?
I found this the first time I took the dump of mailboxes.db
and then subsequently when I tried to do some operation which wasn't permitted (example, it'd show up in the verbose output while trying to delete a mailbox without applying delete permission to the cyrus
user).
PS: I don't know if such a small question is going to be answered but googling didn't yield anything specific, so I thought it'd be better to ask.
Best Answer
IMAP4 allows the use of shared mailboxes. Therefore it makes sense to have some control over the rights a user has on a mailbox. Those rights are defined with access control lists (ACL). Cyrus IMAPd uses ACLs to control access to any type of mailbox, be it private, shared or public.
Every mailbox contains an ACL, which is a list of access control entries. Those entries consists of a userid and the rights, the user has on the particular mailbox.
The rights are (RFC4314):
"c" and "d" are obsolete as of RFC4314 (section 2.1.1.).
To administer ACLs in cyrus, you can use cyradm:
Some optimizations:
sam
,lam
,dam
sam shared.* jenny lrs
sam shared.* anyone lrswipkxtecda
sam shared.* anyone all
sam shared.secret -edgar all