File permissions question (PHP?)

[Maikel]

The folder "Maildir" for a users email account, has permissions set to 0700. The files within it have 600/700 rights as well, so obviously a process must run as the owner (DA user) to do anything with it. My webapps run as user "webapps", including Roundcube (atleast that's what I'm thinking). So how does Roundcube handle a user's email? Is there a function in PHP to switch users or something?

Just curious.

By the way, default open_basedir settings are /home/[user]/ and more. I tend to change this to /home/[user]/domains/, so a compromised website won't endanger an user's email.. what's the reason behind this not being default?

 

[Maikel]

Ok, I found out about the php function posix_setuid(), but Roundcube doesn't contain that function. When I grep through Roundcube for posix or setuid, no real relevant results show up.

So anyone with an explanation?

 

[scsi]

What are you talking about? Mail is delivered through your imap server, what does webmail have to do with this?

 

[Maikel]

Ok nvm, I see how it works now. I thought Roundcube handled mail itself.