[Dovecot] Converting to 2.0 and LMTP have userdb and auth-worker complaints

Daniel Luttermann daniel at dlutt.de
Tue Nov 2 12:26:52 EET 2010 

Maple Thorpe wrote on 11/02/2010:

> Additional info:
> ------------------
> dovecot log messages
> ------------------
> Nov 02 03:27:39 master: Info: Dovecot v2.0.1 starting up (core dumps
> disabled)
> Nov 02 03:27:50 lmtp(17281): Debug: none: root=, index=, control=,
> inbox=
> Nov 02 03:27:50 lmtp(17281): Info: Connect from local
> Nov 02 03:27:50 auth: Fatal: net_connect_unix(auth-worker) failed:
> Permission denied
> Nov 02 03:27:50 lmtp(17281): Error: userdb lookup(john at homenet.lan):
> Disconnected unexpectedly

OK, you get a "permission denied" error...

> ------------------
> doveconf -n
> ------------------
> # 2.0.1: /etc/dovecot/dovecot.conf
> # OS: Linux 2.6.35.6-48.fc14.i686 i686 Fedora release 14 (Laughlin)
> auth_mechanisms = plain login cram-md5
> listen = *
> log_path = /var/log/dovecot.log
> mail_debug = yes
> mail_location = maildir:%h/Maildir/
> passdb {
>   args = /etc/dovecot/dovecot-mysql.conf
>   driver = sql
> }
> plugin {
>   trash = /etc/dovecot/trash.conf
> }
> protocols = imap lmtp
> service auth-worker {
>   group = postfix
>   user = postfix
> }
> service auth {
>   unix_listener /var/spool/postfix/private/auth {
>     group = postfix
>     mode = 0660
>     user = postfix
>   }
>   user = postfix
> }

Why do you use "group = postfix and "user = postfix" for the  
auth-worker? This user needs access to your password and user  
database. See:
http://wiki2.dovecot.org/UserIds

I mean the default user/group is "root".

> ls -l /var/run/dovecot/
> total 12
> srw------- 1 root    root        0 Nov  2 03:27 anvil
> srw------- 1 root    root        0 Nov  2 03:27 anvil-auth-penalty
> srw------- 1 root    root        0 Nov  2 03:27 auth-client
> srw------- 1 dovecot root        0 Nov  2 03:27 auth-login
> srw------- 1 root    root        0 Nov  2 03:27 auth-master
> srw------- 1 root    root        0 Nov  2 03:27 auth-userdb
> srw------- 1 dovecot root        0 Nov  2 03:27 auth-worker
> srw------- 1 root    root        0 Nov  2 03:27 config
> srw------- 1 root    root        0 Nov  2 03:27 dict
> srw------- 1 root    root        0 Nov  2 03:27 director-admin
> srw-rw-rw- 1 root    root        0 Nov  2 03:27 dns-client
> srw------- 1 root    root        0 Nov  2 03:27 doveadm-server
> lrwxrwxrwx 1 root    root       25 Nov  2 03:27 dovecot.conf
> -> /etc/dovecot/dovecot.conf
> drwxr-xr-x 2 root    root     4096 Aug 25 08:12 empty
> srw-rw-rw- 1 root    root        0 Nov  2 03:27 lmtp
> drwxr-x--- 2 root    dovenull 4096 Nov  2 03:27 login
> -rw------- 1 root    root        6 Nov  2 03:27 master.pid

Hmm, this is a bit curious because auth-worker runs as user "dovecot"  
and group "root" but above you've set "postfix/postfix"... Is the  
socket "auth-worker" re-created with different permissions if you  
restart Dovecot? Have you tried to use the default permissions  
(root/root instead of postfix/postfix)?

--
Daniel

More information about the dovecot mailing list