Hi all, I'm currently trying to get my public/shared mailbox access working again after migration to 2.4.1. I thought I would have done all required changes, but Dovecot 2.4.1 seems to act slightly different than 2.3.x.

I've tried to understand what is wrong, read the documentation multiple times and searched the internet for a solution, but unfortunately without final success. I hope you can shed some light on how to get the original behavior back.

Let me explain my original setup, which worked for years without any issues. I've setup the following shared folders as an adminstrator and set the access right on a directly level, e.g.

/home/imapshared imapshared:users 0770 /home/imapshared/.Parents imapshared:parents 0770 /home/imapshared/.Kids imapshared:kids 0770

This was my working Dovecot 2.3 configuration:

namespace { type = shared separator = / prefix = '#Shared/' location = maildir:/home/imapshared:INDEXPVT=~/.imapmail/shared subscriptions = no }

User, who were allowed to access the folder, got e.g. the 'parents' or 'kids' group assigned as secondary group, the primary one is 'users'.

Based on the documentation I've modified the Dovecot 2.4 configuration as follows:

namespace shared { type = shared mail_driver = maildir separator = / prefix = '#Shared/' mail_path = /home/imapshared mail_index_private_path = ~/.imapmail/shared subscriptions = no }

This is what I already found out or tried to adjust:

• I found out that the shared folder can be accessed if the shared folder system group is set to 'users' (primary group), but by default not if a system group is used which is the secondary group of a user (e.g. parents or kids)

• In the documentation I found a hint, that Dovecot by default would now only accept the primary group. By setting the following parameter additional groups should also be accepted:

  mail_access_groups = yes

  Unfortunately, that doesn't restore the orinal functionality.

• In the documentation I found a hint, that all folders which have been created by an administrator, should now be of type 'public' but changing that setting doesn't work either.

  "It's important that the namespace type is "public" regardless of whether you set the namespace prefix to "shared." or something else."

This is the error which is logged, which is not true:

Error: maildir: stat(/home/imapshared/.Parents/tmp) failed: Permission denied (euid=2000(father) egid=100(users) missing +x perm: /home/imapshared/.Parents, we're not in group 203(parents), dir owned by 2226:203 mode=0770)

This is the user used to access the folder:

uid=2000(father) gid=100(users) groups=100(users), ..., 203(parents), ...

Do you have any idea or hint how to solve this issue and provide an example what needs to be modified in my configuration to get the original functionality back?

Thanks Juergen

Mail: juergen.edner@telejeck.de GPG Key available

-- Mail: juergen@eisfair.org