[Dovecot] auth-master socket access

Timo Sirainen tss at iki.fi
Fri Sep 23 16:00:15 EEST 2005


On Mon, 2005-09-19 at 00:59 +0200, Jakob Hirsch wrote:
> Lieven Van Acker wrote:
> 
> > Is there any solution to the /var/run/dovecot/auth-master access
> > restrictions, prohibiting the user running dovecot-deliver from
> > communicating with the master (aside from the dirty and unsafe hack to
> > reset the permissions of the /var/run/dovecot dir after starting dovecot)?
> 
> RTFWiki: Put the auth-master socket into another directory and write
> this path into dovecot-lda.conf.
> 
> Setting suid on the deliver binary should also help, but it does not
> work and it seems to me that it's not designed for such usage.

I'm also changing this now in default config file
to /var/run/dovecot-auth-master

There's really no reason why it needs to be in /var/run/dovecot, and
it's probably better to place it elsewhere than to start allowing
changes to /var/run/dovecot's permissions.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20050923/91c47331/attachment.pgp


More information about the dovecot mailing list