[Dovecot] Correct folder permissions for maildir....
G'Day,
I am trying to find a definitive answer to what the directory permissions should be for my configuration under Centos 5.5. I see a number of the following error messages in the maillog as a consequence of permissions errors. After reading the FAQ, Wiki etc. and browsing the web I am unable to determine just exactly what the user security settings should be for the offending folders. If anyone could point me in the right direction I would appreciate it. Should you require additional diagnostic information let me know and I will source it.
The error messages:
Jun 17 19:50:14 moe dovecot: POP3(carolyn.spyseebiz): mkdir_parents(/home/spyseebiz/homes/carolyn/mail/.imap/INBOX) failed: Permission denied Jun 17 19:53:09 moe dovecot: POP3(marnie.capitel): mkdir_parents(/home/capitel/homes/marnie/mail/.imap/INBOX) failed: Permission denied
dovecot -n
# 1.0.7: /etc/dovecot.conf protocols: imap pop3 imaps pop3s listen: 116.212.71.194 ssl_listen: 116.212.71.194 login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %v.%u namespace: type: private separator: / prefix: #mbox/ location: mbox:~/mail:INBOX=/var/mail/%u inbox: yes hidden: yes namespace: type: private separator: / location: maildir:~/Maildir auth default: passdb: driver: pam userdb: driver: passwd
ps aux | grep dovecot
root 3457 0.0 0.0 1880 508 ? Ss Jun13 0:20 /usr/sbin/dovecot root 5650 0.0 0.1 7952 1460 ? S 03:28 0:04 dovecot-auth dovecot 15591 0.0 0.1 4992 1760 ? S 19:26 0:00 imap-login dovecot 15598 0.0 0.1 4992 1752 ? S 19:26 0:00 imap-login dovecot 15627 0.0 0.1 4992 1508 ? S 19:26 0:00 imap-login dovecot 16596 0.0 0.1 4988 1748 ? S 19:45 0:00 pop3-login dovecot 16615 0.0 0.1 4988 1744 ? S 19:46 0:00 pop3-login dovecot 16720 0.2 0.1 4988 1500 ? S 19:47 0:00 pop3-login root 16726 0.0 0.0 4000 700 pts/0 S+ 19:48 0:00 grep dovecot
-- --Donovan J. Edye Calico Communications - "All your marketing, communication & web needs." Home To: daisyndandelion.com.au, natiki.com.au, themarketingcoach.com.au w: calicom.com.au t: +61-2-6292-1573 f: +61-2-6292-1592 p: PO Box 165, Erindale Centre, ACT 2903, Australia
hello, is your dovecot supposed to act as a LDA ?
G'Day,
I am trying to find a definitive answer to what the directory permissions should be for my configuration under Centos 5.5. I see a number of the following error messages in the maillog as a consequence of permissions errors. After reading the FAQ, Wiki etc. and browsing the web I am unable to determine just exactly what the user security settings should be for the offending folders. If anyone could point me in the right direction I would appreciate it. Should you require additional diagnostic information let me know and I will source it.
The error messages:
Jun 17 19:50:14 moe dovecot: POP3(carolyn.spyseebiz): mkdir_parents(/home/spyseebiz/homes/carolyn/mail/.imap/INBOX) failed: Permission denied Jun 17 19:53:09 moe dovecot: POP3(marnie.capitel): mkdir_parents(/home/capitel/homes/marnie/mail/.imap/INBOX) failed: Permission denied
dovecot -n
# 1.0.7: /etc/dovecot.conf protocols: imap pop3 imaps pop3s listen: 116.212.71.194 ssl_listen: 116.212.71.194 login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %v.%u namespace: type: private separator: / prefix: #mbox/ location: mbox:~/mail:INBOX=/var/mail/%u inbox: yes hidden: yes namespace: type: private separator: / location: maildir:~/Maildir auth default: passdb: driver: pam userdb: driver: passwd
ps aux | grep dovecot
root 3457 0.0 0.0 1880 508 ? Ss Jun13 0:20 /usr/sbin/dovecot root 5650 0.0 0.1 7952 1460 ? S 03:28 0:04 dovecot-auth dovecot 15591 0.0 0.1 4992 1760 ? S 19:26 0:00 imap-login dovecot 15598 0.0 0.1 4992 1752 ? S 19:26 0:00 imap-login dovecot 15627 0.0 0.1 4992 1508 ? S 19:26 0:00 imap-login dovecot 16596 0.0 0.1 4988 1748 ? S 19:45 0:00 pop3-login dovecot 16615 0.0 0.1 4988 1744 ? S 19:46 0:00 pop3-login dovecot 16720 0.2 0.1 4988 1500 ? S 19:47 0:00 pop3-login root 16726 0.0 0.0 4000 700 pts/0 S+ 19:48 0:00 grep dovecot
G'Day,
LDA = Local Delivery Agent? Postfix is the MTA with Dovecot providing POP3 and IMAP.
On 17/06/2010 9:35 PM, Daniel Petre wrote:
hello, is your dovecot supposed to act as a LDA ?
G'Day,
I am trying to find a definitive answer to what the directory permissions should be for my configuration under Centos 5.5. I see a number of the following error messages in the maillog as a consequence of permissions errors. After reading the FAQ, Wiki etc. and browsing the web I am unable to determine just exactly what the user security settings should be for the offending folders. If anyone could point me in the right direction I would appreciate it. Should you require additional diagnostic information let me know and I will source it.
The error messages:
Jun 17 19:50:14 moe dovecot: POP3(carolyn.spyseebiz): mkdir_parents(/home/spyseebiz/homes/carolyn/mail/.imap/INBOX) failed: Permission denied Jun 17 19:53:09 moe dovecot: POP3(marnie.capitel): mkdir_parents(/home/capitel/homes/marnie/mail/.imap/INBOX) failed: Permission denied
dovecot -n
# 1.0.7: /etc/dovecot.conf protocols: imap pop3 imaps pop3s listen: 116.212.71.194 ssl_listen: 116.212.71.194 login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %v.%u namespace: type: private separator: / prefix: #mbox/ location: mbox:~/mail:INBOX=/var/mail/%u inbox: yes hidden: yes namespace: type: private separator: / location: maildir:~/Maildir auth default: passdb: driver: pam userdb: driver: passwd
ps aux | grep dovecot
root 3457 0.0 0.0 1880 508 ? Ss Jun13 0:20 /usr/sbin/dovecot root 5650 0.0 0.1 7952 1460 ? S 03:28 0:04 dovecot-auth dovecot 15591 0.0 0.1 4992 1760 ? S 19:26 0:00 imap-login dovecot 15598 0.0 0.1 4992 1752 ? S 19:26 0:00 imap-login dovecot 15627 0.0 0.1 4992 1508 ? S 19:26 0:00 imap-login dovecot 16596 0.0 0.1 4988 1748 ? S 19:45 0:00 pop3-login dovecot 16615 0.0 0.1 4988 1744 ? S 19:46 0:00 pop3-login dovecot 16720 0.2 0.1 4988 1500 ? S 19:47 0:00 pop3-login root 16726 0.0 0.0 4000 700 pts/0 S+ 19:48 0:00 grep dovecot
G'Day,
LDA = Local Delivery Agent? Postfix is the MTA with Dovecot providing POP3 and IMAP.
okay then, shouldnt dovecot have rw acces to the folders the mail is delivered by postfix under the user that MTA runs?
On 17/06/2010 9:35 PM, Daniel Petre wrote:
hello, is your dovecot supposed to act as a LDA ?
G'Day,
I am trying to find a definitive answer to what the directory permissions should be for my configuration under Centos 5.5. I see a number of the following error messages in the maillog as a consequence of permissions errors. After reading the FAQ, Wiki etc. and browsing the web I am unable to determine just exactly what the user security settings should be for the offending folders. If anyone could point me in the right direction I would appreciate it. Should you require additional diagnostic information let me know and I will source it.
The error messages:
Jun 17 19:50:14 moe dovecot: POP3(carolyn.spyseebiz): mkdir_parents(/home/spyseebiz/homes/carolyn/mail/.imap/INBOX) failed: Permission denied Jun 17 19:53:09 moe dovecot: POP3(marnie.capitel): mkdir_parents(/home/capitel/homes/marnie/mail/.imap/INBOX) failed: Permission denied
dovecot -n
# 1.0.7: /etc/dovecot.conf protocols: imap pop3 imaps pop3s listen: 116.212.71.194 ssl_listen: 116.212.71.194 login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %v.%u namespace: type: private separator: / prefix: #mbox/ location: mbox:~/mail:INBOX=/var/mail/%u inbox: yes hidden: yes namespace: type: private separator: / location: maildir:~/Maildir auth default: passdb: driver: pam userdb: driver: passwd
ps aux | grep dovecot
root 3457 0.0 0.0 1880 508 ? Ss Jun13 0:20 /usr/sbin/dovecot root 5650 0.0 0.1 7952 1460 ? S 03:28 0:04 dovecot-auth dovecot 15591 0.0 0.1 4992 1760 ? S 19:26 0:00 imap-login dovecot 15598 0.0 0.1 4992 1752 ? S 19:26 0:00 imap-login dovecot 15627 0.0 0.1 4992 1508 ? S 19:26 0:00 imap-login dovecot 16596 0.0 0.1 4988 1748 ? S 19:45 0:00 pop3-login dovecot 16615 0.0 0.1 4988 1744 ? S 19:46 0:00 pop3-login dovecot 16720 0.2 0.1 4988 1500 ? S 19:47 0:00 pop3- login root 16726 0.0 0.0 4000 700 pts/0 S+ 19:48 0:00 grep dovecot
-- Daniel Petre, System Administrator RCS & RDS, Pitesti Tel: 0348400426 Mobil: 0770048708 Skype: daniel-petre Ym: petredaniel
On Thu, Jun 17, 2010 at 09:52:46PM +1000, Donovan J. Edye wrote:
G'Day,
LDA = Local Delivery Agent? Postfix is the MTA with Dovecot providing
POP3 and IMAP.
Have a look at this Dovecot variable "mail_privileged_group = mail"
http://wiki.dovecot.org/MailboxFormat/mbox
Generally speaking it needs to match the group that Postfix uses when writing the mbox file. Besides this your Dovecot version is really old and almost guarantees other issues arising.
Regards Thomas
On Thu, Jun 17, 2010 at 02:11:44PM +0200, Thomas Leuxner wrote:
Generally speaking it needs to match the group that Postfix uses when writing the mbox file. Besides this your Dovecot version is really old and almost guarantees other issues arising.
Regards Thomas
My bad, you said maildir. Anyhow have a look at these:
mail_location = maildir:~/maildir mail_privileged_group = mail
Regards Thomas
On Thu, 2010-06-17 at 20:37 +1000, Donovan J. Edye wrote:
Jun 17 19:50:14 moe dovecot: POP3(carolyn.spyseebiz): mkdir_parents(/home/spyseebiz/homes/carolyn/mail/.imap/INBOX) failed: Permission denied
Are these dirs owned by "carolyn"?
Jun 17 19:53:09 moe dovecot: POP3(marnie.capitel): mkdir_parents(/home/capitel/homes/marnie/mail/.imap/INBOX) failed: Permission denied
Are these dirs owned by "marnie"?
mail_location: mbox:~/mail/:INBOX=/var/mail/%u
Are /var/mail/* mode 0600?
My guess: If the dir owned are as expected, you have SELinux enabled and it's preventing the accesses.
participants (4)
-
Daniel Petre
-
Donovan J. Edye
-
Thomas Leuxner
-
Timo Sirainen