Permission denied to access the email file

Aki Tuomi aki.tuomi at dovecot.fi
Mon Aug 21 09:52:14 EEST 2017



On 17.08.2017 13:43, ATHANASE Jean-René wrote:
> Hi,
>
> Dovecot version : 2.2.22 (fe789d2)
> Operating system :
>     DISTRIB_ID=Ubuntu
>     DISTRIB_RELEASE=16.04
>     DISTRIB_CODENAME=xenial
>     DISTRIB_DESCRIPTION="Ubuntu 16.04.2 LTS"
> CPU architecture : Linux 4.4.67-1-pve #1 SMP PVE 4.4.67-92 (Fri, 23
> Jun 2017 08:22:06 +0200) x86_64 GNU/Linux
> FIle system : local
>
> UID    GID
> Aug 17 11:47:28 azizee dovecot: imap(jra11[*5063*:*5011*]): Debug:
> Effective uid=5063, gid=5011, home=/var/spool/domaines/vitalnet/jra/
> Aug 17 11:47:28 azizee dovecot: imap(jra11[5063:5011]): Debug:
> Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no,
> list=yes, subscriptions=yes
> location=maildir:/var/spool/domaines/vitalnet/jra/
> Aug 17 11:47:28 azizee dovecot: imap(jra11[5063:5011]): Debug:
> maildir++: root=/var/spool/domaines/vitalnet/jra, index=, indexpvt=,
> control=, inbox=/var/spool/domaines/vitalnet/jra, alt=
> Aug 17 11:47:28 azizee dovecot: imap(jra11[5063:5011]): *Error*:
> open(/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,)
> failed: *Permission denied* (euid=*5063*(<unknown>)
> egid=*5011*(<unknown>) missing +r perm:
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,)
>
> Ldap configuration :
>   user_attrs =
> uid=user,userPassword=password,homeDirectory=home,uidNumber=uid,gidNumber=gid
>
> ll
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,
> -rw------- 1 5095 5011 438 Aug 16 15:29
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,
>
>
> If I set with the command line "chmod g=rw
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,",
> this file email is treated by Dovecot, per example, i have deleted it.
>
> ll
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,ST
>
> -rw-rw---- 1 5095 5011 438 Aug 16 15:29
> /var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,ST
>
> What's the problem of my configuration ?
>
> Best regards,

For some reason that file lacks read-permissions for 5063:5011 (which
come from ldap). Your file shows that it's lacking UID 5063. Why is it
owned by 5095? Did you change them?

Aki


More information about the dovecot mailing list