[Dovecot] This binary should probably be called with process group set to (vmail) instead of (userid)
Timo Sirainen
tss at iki.fi
Mon May 7 22:33:07 EEST 2012
On 7.5.2012, at 22.11, Jeff Lacki wrote:
>> Im sorry to ask another basic question, but Ive tried to find this
>> answer for several hours now and it eludes me. Im getting the following
>> when dovecot tries to deliver an email:
>>
>> May 6 19:29:21 mydomain dovecot: lda: Debug: auth input: jeff home=/opt/imapdata/j/jeff/INBOX uid=1001 gid=999
>> May 6 19:29:21 mydomain dovecot: lda(jeff): Fatal: setgid(999(vmail) from userdb lookup) failed with euid=999(vmail), gid=500(jeff), egid=500(jeff): Operation not permitted (This binary should probably be called with process group set to 999(vmail) instead of 500(jeff))
>>
>> I cannot seem to find where its trying to call dovecot-lda with uid(jeff) at?
Postfix is calling dovecot-lda as jeff.
> I forgot to show my dovecot-lda, it seems correct and its setuid as well:
>
> -rwsr-x--x 1 vmail vmail 75789 Apr 28 08:15 dovecot-lda*
You shouldn't make it setuid in a vmail setup. And by removing the suid bit from it I'm guessing the error message will also change to say that euid=jeff.
> postfix master.cf:
>
> virtual_transport = vmail
> mailbox_command=/opt/dovecot/libexec/dovecot/dovecot-lda -f "$SENDER" -a "$RECIPIENT"
mailbox_command shouldn't be used to deliver mails to virtual users. Use http://wiki2.dovecot.org/LDA/Postfix#Virtual_users instead.
More information about the dovecot
mailing list