On 7.5.2012, at 22.11, Jeff Lacki wrote:
Im sorry to ask another basic question, but Ive tried to find this answer for several hours now and it eludes me. Im getting the following when dovecot tries to deliver an email:
May 6 19:29:21 mydomain dovecot: lda: Debug: auth input: jeff home=/opt/imapdata/j/jeff/INBOX uid=1001 gid=999 May 6 19:29:21 mydomain dovecot: lda(jeff): Fatal: setgid(999(vmail) from userdb lookup) failed with euid=999(vmail), gid=500(jeff), egid=500(jeff): Operation not permitted (This binary should probably be called with process group set to 999(vmail) instead of 500(jeff))
I cannot seem to find where its trying to call dovecot-lda with uid(jeff) at?
Postfix is calling dovecot-lda as jeff.
I forgot to show my dovecot-lda, it seems correct and its setuid as well:
-rwsr-x--x 1 vmail vmail 75789 Apr 28 08:15 dovecot-lda*
You shouldn't make it setuid in a vmail setup. And by removing the suid bit from it I'm guessing the error message will also change to say that euid=jeff.
postfix master.cf:
virtual_transport = vmail mailbox_command=/opt/dovecot/libexec/dovecot/dovecot-lda -f "$SENDER" -a "$RECIPIENT"
mailbox_command shouldn't be used to deliver mails to virtual users. Use http://wiki2.dovecot.org/LDA/Postfix#Virtual_users instead.