8 Dec
2023
8 Dec
'23
10:24 p.m.
John Fawcett skrev den 2023-12-08 13:45:
I realize it only adds marginal security to not have these files world readable, but still it is puzzling why dovecot cannot read them in that case. Can anyone see what I am missing?
dovecot does imho not run anywhere with users group ?
default in gentoo all users is default in /home group subdirs, did you make mistakes here ?
private & public keys should only be owned and grouped as root, why ?, dovecot runs on ports below 1024, so all auth is loaded as root where it drops priveleges later !
dont make secureity mistakes