Afer a reboot (and installation of postfix-3.4.5) I am getting the stat-writer permission denied error again.
from doveconf -n
service stats { unix_listener stats-reader { user = dovecot } unix_listener stats-writer { user = dovecot } }
# ls -ls /var/run/dovecot/stats-writer 0 srw-rw---- 1 dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
Apr 20 04:45:00 mail postfix/pipe[80136]: 44mTxm3Mblzc3Td: to=<munged>, relay=dovecot, delay=0.06, delays=0.02/0.02/0/0.02, dsn=2.0.0, status=sent (delivered via dovecot service (lda(,munged,)Error: net_connect_unix(/var/run/dovecot/stats-writer) failed: Permiss))
-- W is for WINNIE embedded in ice X is for XERXES devoured by mice
service stats { unix_listener stats-reader { group = mail mode = 0666 user = } unix_listener stats-writer { group = mail mode = 0666 user = } } service anvil { unix_listener anvil { group = mail mode = 0666 } }
in my local.conf.
On Sat, Apr 20, 2019 at 2:46 PM @lbutlr via dovecot dovecot@dovecot.org wrote:
Afer a reboot (and installation of postfix-3.4.5) I am getting the stat-writer permission denied error again.
from doveconf -n
service stats { unix_listener stats-reader { user = dovecot } unix_listener stats-writer { user = dovecot } }
# ls -ls /var/run/dovecot/stats-writer 0 srw-rw---- 1 dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
Apr 20 04:45:00 mail postfix/pipe[80136]: 44mTxm3Mblzc3Td: to=<munged>, relay=dovecot, delay=0.06, delays=0.02/0.02/0/0.02, dsn=2.0.0, status=sent (delivered via dovecot service (lda(,munged,)Error: net_connect_unix(/var/run/dovecot/stats-writer) failed: Permiss))
-- W is for WINNIE embedded in ice X is for XERXES devoured by mice
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 20 Apr 2019, at 14:05, Larry Rosenman via dovecot dovecot@dovecot.org wrote:
service stats { unix_listener stats-reader { group = mail
Why would I change the group from the group the socket is using?
mode = 0666
That cannot possibly be best practice.
I'm not opening up any part of my mail stack to all processes.
# ls -ls /var/run/dovecot/stats-writer 0 srw-rw---- 1 dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
-- Please to meet you, Rose. Now run for your life!
Then figure out what user/group needs the access and set the perms.
I can't help you other than what I've shown you.
(my box doesn't have foreign users on it, so this was the most espedient route for me).
On Sat, Apr 20, 2019 at 3:16 PM @lbutlr via dovecot dovecot@dovecot.org wrote:
On 20 Apr 2019, at 14:05, Larry Rosenman via dovecot dovecot@dovecot.org wrote:
service stats { unix_listener stats-reader { group = mail
Why would I change the group from the group the socket is using?
mode = 0666That cannot possibly be best practice.
I'm not opening up any part of my mail stack to all processes.
# ls -ls /var/run/dovecot/stats-writer 0 srw-rw---- 1 dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
-- Please to meet you, Rose. Now run for your life!
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 20 Apr 2019, at 14:21, Larry Rosenman via dovecot dovecot@dovecot.org wrote:
Then figure out what user/group needs the access and set the perms.
Well, stats-write has an owner and group of dovecot, as I showed.
dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
-- 'I thought dwarfs didn't believe in devils and demons and stuff like that.' 'That's true, but... we're not sure if they know.'
I do believe that imap reader processes write stats as the *USER*.
On Sat, Apr 20, 2019 at 3:41 PM @lbutlr via dovecot dovecot@dovecot.org wrote:
On 20 Apr 2019, at 14:21, Larry Rosenman via dovecot dovecot@dovecot.org wrote:
Then figure out what user/group needs the access and set the perms.
Well, stats-write has an owner and group of dovecot, as I showed.
dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
-- 'I thought dwarfs didn't believe in devils and demons and stuff like that.' 'That's true, but... we're not sure if they know.'
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
service stats { unix_listener stats-reader { group = mail mode = 0666 user = } unix_listener stats-writer { group = mail mode = 0666 user = } } service anvil { unix_listener anvil { group = mail mode = 0666 } }
in my local.conf.
Maybe a resend (sorry for the dupe if it is)
On Sat, Apr 20, 2019 at 2:46 PM @lbutlr via dovecot dovecot@dovecot.org wrote:
Afer a reboot (and installation of postfix-3.4.5) I am getting the stat-writer permission denied error again.
from doveconf -n
service stats { unix_listener stats-reader { user = dovecot } unix_listener stats-writer { user = dovecot } }
# ls -ls /var/run/dovecot/stats-writer 0 srw-rw---- 1 dovecot dovecot 0 Apr 20 04:34 /var/run/dovecot/stats-writer
Apr 20 04:45:00 mail postfix/pipe[80136]: 44mTxm3Mblzc3Td: to=<munged>, relay=dovecot, delay=0.06, delays=0.02/0.02/0/0.02, dsn=2.0.0, status=sent (delivered via dovecot service (lda(,munged,)Error: net_connect_unix(/var/run/dovecot/stats-writer) failed: Permiss))
-- W is for WINNIE embedded in ice X is for XERXES devoured by mice
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
participants (3)
-
unknown@example.com
-
@lbutlr
-
Larry Rosenman