Re: [Dovecot] LMTP error
IT geek 31 <itgeek31@googlemail.com> writes:
I've recently switched to LMTP as I'm now using mdbox. However since switching, mails sent to the root account do not get delivered due to the following error:
May 1 18:20:17 Server1 postfix/lmtp[13019]: CAEE91F851: to=<root@test.com>, relay=mail.test.com[private/dovecot-lmtp], delay=1097, delays=1096/0.45/0.43/0.46, dsn=4.3.0, status=deferred (host mail.test.com[private/dovecot-lmtp] said: 451 4.3.0 <root@test.com> Invalid user settings. Refer to server log for more information. (in reply to RCPT TO command))
This setting:
first_valid_uid = 1010
will need to be changed to "0", or better yet, as others have suggested, alias root to some user with UID within 1010..1020.
The dovecot logs that you ought to see will be something like
May 1 16:12:11 viol dovecot: lda: Error: user root: Mail access
for users with UID 0 not permitted (see first_valid_uid
in config file, uid from userdb lookup).Joseph Tam <jtam.home@gmail.com>
On 2 May 2014 01:17, Joseph Tam <jtam.home@gmail.com> wrote:
This setting:
first_valid_uid = 1010
will need to be changed to "0", or better yet, as others have suggested, alias root to some user with UID within 1010..1020.
Ah-ha! That's what caused it. I wouldn't have seen that error before changing to LMTP, as using mbox Postfix would have just delivered it without issue.
Unfortunately I need the first and last valid UID as this is how I control which accounts are replicated.
I've setup an alias for root now that uses an account in the 1010-1020 range and I'm all happy :-)
-Mark
On 5/1/2014 7:17 PM, Joseph Tam <jtam.home@gmail.com> wrote:
This setting:
first_valid_uid = 1010
will need to be changed to "0",
Worst ... advice ... ever.
Please do NOT EVER suggest to anyone else to EVER do that.
or better yet, as others have suggested, alias root to some user with UID within 1010..1020.
This is one of the very *first* things that you should do on pretty much *any* new server setup.
I guess maybe there are one or more valid corner cases where you wouldn't want to do this, but I can't think of any (good) ones...
Charles
participants (3)
-
Charles Marcus
-
IT geek 31
-
Joseph Tam