[Dovecot] question about /var/mail/xxx

Steffen Kaiser skdovecot at smail.inf.fh-brs.de
Mon Jun 22 06:48:27 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 19 Jun 2015, Mickael Choisnard wrote:
> Le 19/06/2015 09:04, Steffen Kaiser a écrit :
>> On Fri, 19 Jun 2015, Mickael Choisnard wrote:

>>> I need your help to use dovecot with sendmail
>>> I use a fresh debian 8 jessie and i installed sendmail and dovecot 2.
>>> Sendmail works fine.
>>> 
>>> All mails go to /var/mail/xxx
>>> 
>>> this is problem for dovecot. dovecot cannot get it.
>>> 
>>> # 2.2.13: /etc/dovecot/dovecot.conf
>>> # OS: Linux 3.16.0-4-amd64 x86_64 Debian 8.1
>>> auth_mechanisms = plain login
>>> auth_verbose = yes
>>> auth_verbose_passwords = yes
>>> disable_plaintext_auth = no
>>> first_valid_uid = 116
>>> last_valid_uid = 116
>>> log_path = /var/log/dovecot.log
>>> mail_home = /srv/mail/%u
>>> mail_location = mbox:~/mail:INBOX=/var/mail/%u
>>> mail_privileged_group = mail
>>> namespace inbox {
>>>  inbox = yes
>>>  location =
>>>  mailbox Drafts {
>>>    special_use = \Drafts
>>>  }
>>>  mailbox Junk {
>>>    special_use = \Junk
>>>  }
>>>  mailbox Sent {
>>>    special_use = \Sent
>>>  }
>>>  mailbox "Sent Messages" {
>>>    special_use = \Sent
>>>  }
>>>  mailbox Trash {
>>>    special_use = \Trash
>>>  }
>>>  prefix =
>>> }
>>> passdb {
>>>  args = scheme=SHA-CRYPT /etc/dovecot/users
>>>  driver = passwd-file
>>> }
>>> postmaster_address = root at arpagon
>>> protocols = " imap pop3"
>>> service auth {
>>>  unix_listener auth-userdb {
>>>    group = vmail
>>>    user = vmail
>>>  }
>>> }
>>> ssl = no
>>> userdb {
>>>  args = uid=vmail gid=vmail home=/srv/vmail/%d/%n
>>>  driver = static
>>> }
>>> 
>>> cat /var/log/dovecot.log
>>> 
>>> Jun 19 08:14:18 imap-login: Info: Login: user=<mc110771>, method=PLAIN, 
>>> rip=10.11.12.30, lip=88.179.182.93, mpid=18799, session=<z46U1dgY+gAKCwwe>
>>> Jun 19 08:14:18 imap(mc110771): Info: Disconnected: Logged out in=8 
>>> out=395
>>> Jun 19 08:14:26 imap-login: Info: Login: user=<mc110771>, method=PLAIN, 
>>> rip=10.11.12.30, lip=88.179.182.93, mpid=18801, session=<bNcE1tgY+wAKCwwe>
>>> Jun 19 08:14:26 imap-login: Info: Login: user=<mc110771>, method=PLAIN, 
>>> rip=10.11.12.30, lip=88.179.182.93, mpid=18803, session=<sEIP1tgY/AAKCwwe>
>>> Jun 19 08:14:26 imap(mc120771): Error: open() failed with mbox file 
>>> /var/mail/mc120771: Permission denied
>> 
>> what permissions have these files?
> -rw-rw---- mc120771 mail
> I'm in the configuration like this
> http://wiki2.dovecot.org/MailLocation/mbox
> I use "mail_privileged_group = mail" whithout success

hmm:

1) # Group to enable temporarily for privileged operations. Currently this is
# used only with INBOX when either its initial creation or dotlocking fails.
# Typically this is set to "mail" to give access to /var/mail.
#mail_privileged_group =

# Grant access to these supplementary groups for mail processes. Typically
# these are used to set up access to shared mailboxes. Note that it may be
# dangerous to set these if users can create symlinks (e.g. if "mail" group is
# set here, ln -s /var/mail ~/mail/var could allow a user to delete others'
# mailboxes, or ln -s /secret/shared/box ~/mail/mybox would allow reading it).
#mail_access_groups =

IMHO, you need to set both settings, see the difference in the 
explanation.

2) Check out the last paragraphe on:
http://wiki2.dovecot.org/WhyDoesItNotWork?highlight=%28SELinux%29

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEVAwUBVYevu3z1H7kL/d9rAQKnNwf/UJAQ4Z/G8vEeXp205sm889VFu2Xtmw1j
moR3rE8vQ0aFnyUcW/mZVcdAkhJD4qdTnJqvw568oSnaUNBmfS49QAQ8laYwsUke
Y0DYkU0kHtQebwOPI0FptXHdtjzqOvq2AcElxvPFTEyHBU5Y1RbUxHZ8XqEQcJl+
cDGfU0wO2CDlimYw8ahtFkKPX+2Q2sGWZnkRUj1eFhF1QN3kA5/TENFRWahwxAte
BcgyBXH2W6gNJMuRs/71skwpL5/El+Ws6fGSTUPNxxx7dg1fgpbxbqXRyfGG5vaY
iFP/Admv3LeLtEF731HtPmA6HIO9FoamFfYRmor4S5tFIMi57xiuQQ==
=l30L
-----END PGP SIGNATURE-----


More information about the dovecot mailing list