[Dovecot] Permission problems
Hi,
I've set up a Postfix and Dovecot (only IMAP) combination using MySQL and Postfixadmin on Fedora. Almost everything works correctly now. The only thing bugging me right now is that I always have to change the access privileges of the directories in /var/run/dovecot/ manually to 777 to make it work. As you understand, I'm not particularly happy about this as it doesn't feel secure at all. And I also have to do this every time I reboot since Dovecot resets the old access priviliges (600).
As you see I've got a vmail user who belongs to the mail group. Almost all directories under /var/run/dovecot belong to user root and group root. They all have the permissions rw--------.
Below is some output from the log file dovecot.log:
Mar 01 03:31:17 auth: Fatal: net_connect_unix(auth-worker) in directory /run/dovecot failed: Permission denied (euid=101(vmail) egid=12(mail) missing +r perm: /run/dovecot/auth-worker, dir owned by 0:97 mode=0755) Mar 01 03:31:17 master: Error: service(auth): command startup failed, throttling Mar 01 03:31:46 imap-login: Info: Disconnected (auth failed, 1 attempts): method=PLAIN, rip=94.254.99.6, lip=91.123.204.174
What is wrong here and how can I correct it?
Thanks in advance! /David R.
On 2/29/2012 8:53 PM, David Renstrom wrote:
Hi,
I've set up a Postfix and Dovecot (only IMAP) combination using MySQL and Postfixadmin on Fedora. Almost everything works correctly now. The only thing bugging me right now is that I always have to change the access privileges of the directories in /var/run/dovecot/ manually to 777 to make it work. As you understand, I'm not particularly happy about this as it doesn't feel secure at all. And I also have to do this every time I reboot since Dovecot resets the old access priviliges (600).
As you see I've got a vmail user who belongs to the mail group. Almost all directories under /var/run/dovecot belong to user root and group root. They all have the permissions rw--------.
Is this a Fedora Dovecot RPM, or did you use source? Do you have selinux/apparmor enabled? Do you like shellfish?
-- Stan
On 1.3.2012, at 4.53, David Renstrom wrote:
As you see I've got a vmail user who belongs to the mail group. Almost all directories under /var/run/dovecot belong to user root and group root. They all have the permissions rw--------.
That's how they should be mostly.
Below is some output from the log file dovecot.log:
Mar 01 03:31:17 auth: Fatal: net_connect_unix(auth-worker) in directory /run/dovecot failed: Permission denied (euid=101(vmail) egid=12(mail) missing +r perm: /run/dovecot/auth-worker, dir owned by 0:97 mode=0755)
Why is your auth process running as vmail? Show your dovecot -n output
participants (3)
-
David Renstrom
-
Stan Hoeppner
-
Timo Sirainen