Re: [Dovecot] Correct permissions for base_dir??

21 Oct 2010


      On Thu, 2010-10-21 at 19:42 +0300, Odhiambo Washington wrote:
...
Oct 21 16:33:18 lda: Error: userdb lookup:
connect(/opt/dovecot2/var/run/auth-userdb) failed: Permission denied
(euid=26(mailnull) egid=26(mailnull) missing +r perm:
/opt/dovecot2/var/run/auth-userdb, euid is not dir owner)
It's not complaining about base_dir's permissions, but auth-userdb
socket's permissions. See:
service auth {
auth_socket_path points to this userdb socket by default. It's typically
used by dovecot-lda, doveadm, possibly imap process, etc. Its default
permissions make it readable only by root, but you may need to relax these
permissions. Users that have access to this socket are able to get a list
of all usernames and get results of everyone's userdb lookups.
unix_listener auth-userdb {
#mode = 0600
#user =
#group =
}
Maybe you want to set "user = vmail" or something.

Re: [Dovecot] Correct permissions for base_dir??

Timo Sirainen

auth_socket_path points to this userdb socket by default. It's typically

used by dovecot-lda, doveadm, possibly imap process, etc. Its default

permissions make it readable only by root, but you may need to relax these

permissions. Users that have access to this socket are able to get a list

of all usernames and get results of everyone's userdb lookups.