[Dovecot] Setting up a 'rootless' server - user and auth_user cannot be the same
I am trying to follow http://wiki.dovecot.org/HowTo/Rootless to set up a personal dovecot server that does not use 'root' and does not need to change uids/gids. I'm trying to set it up on a Cygwin personal system.
The problem I'm running into though, the directions say to set "user" and "auth_user" to be the same in this setup. However when you do this, Dovecot compains and will refuse to start up. Did I miss something?
$ ./dovecot --version 1.2.11
$ ./dovecot -n # 1.2.11: /usr/local/etc/dovecot.conf Error: login_user cyg_server (uid 1005) must not be same as auth_user Fatal: Invalid configuration in /usr/local/etc/dovecot.conf
Config trying to use: protocols = imap disable_plaintext_auth = no ssl = no login_chroot = no login_user = cyg_server login_process_size = 0 login_max_processes_count = 5 mail_location = maildir:~/Maildir max_mail_processes = 5 mail_process_size = 0 auth_process_size = 0 auth default { mechanisms = plain passdb passwd-file { args = /usr/local/etc/dovecot.users } userdb passwd { } user = cyg_server }
----- Message from dovecot@cougarcorp.net ---------
I am trying to follow http://wiki.dovecot.org/HowTo/Rootless to set up a personal dovecot server that does not use 'root' and does not need to change uids/gids. I'm trying to set it up on a Cygwin personal system.
The problem I'm running into though, the directions say to set "user" and "auth_user" to be the same in this setup. However when you do this, Dovecot compains and will refuse to start up. Did I miss something?
$ ./dovecot --version 1.2.11
$ ./dovecot -n # 1.2.11: /usr/local/etc/dovecot.conf Error: login_user cyg_server (uid 1005) must not be same as auth_user Fatal: Invalid configuration in /usr/local/etc/dovecot.conf
Config trying to use: protocols = imap disable_plaintext_auth = no ssl = no login_chroot = no login_user = cyg_server login_process_size = 0 login_max_processes_count = 5 mail_location = maildir:~/Maildir max_mail_processes = 5 mail_process_size = 0 auth_process_size = 0 auth default { mechanisms = plain passdb passwd-file { args = /usr/local/etc/dovecot.users } userdb passwd { } user = cyg_server }
----- End message from dovecot@cougarcorp.net -----
On 2010-05-15 11:59 AM, vuser1@test123.ru wrote:
I am trying to follow http://wiki.dovecot.org/HowTo/Rootless to set up a personal dovecot server that does not use 'root' and does not need to change uids/gids. I'm trying to set it up on a Cygwin personal system.
You need to follow the directions found there then.
Your config is missing stuff from the 'The important settings to change for rootless installation are:" section...
--
Best regards,
Charles
On Sat, May 15, 2010 at 9:54 AM, Charles Marcus CMarcus@media-brokers.com wrote:
On 2010-05-15 11:59 AM, vuser1@test123.ru wrote:
I am trying to follow http://wiki.dovecot.org/HowTo/Rootless to set up a personal dovecot server that does not use 'root' and does not need to change uids/gids. I'm trying to set it up on a Cygwin personal system.
You need to follow the directions found there then.
Your config is missing stuff from the 'The important settings to change for rootless installation are:" section...
So I played around with this suggestion and came across the following issues:
The sample config has an invalid directive. 'ssl_disable' is not valid. I'm assuming that 'ssl = no' is the same as 'ssl_disable = yes'. If I can get confirmation of that, I'll update the wiki if no one else does.
If I set the 'user' and 'auth_user' fields to my own login, it works fine (or at least passes 'dovecot -n'. If I set it to the 'cyg_server' user I get the error message about not being able to use the same user. I'm not really clear on the logic used to determine when a user can or can not be used for both. Is there an explanation of this so I can design my layout accordingly? I tried 'first_valid_uid = 1' to see if it would help, did not. cyg_server is already UID 1005 though, so didn't really expect it to.
Jason
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Sun, 16 May 2010, Jason Ahrens wrote:
- If I set the 'user' and 'auth_user' fields to my own login, it works fine (or at least passes 'dovecot -n'. If I set it to the
Hmm, "rootless" also means "no uid switching", right? So all Dovecot parts must run as you (aka under your privilegues).
'cyg_server' user I get the error message about not being able to use
Can you switch to user "cyg_server"?
the same user. I'm not really clear on the logic used to determine when a user can or can not be used for both. Is there an explanation
Maybe, the message is misleading and does not reflect the correct error, because cygwin is not a real POSIX system.
Regards,
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux)
iQEVAwUBS/Exmr+Vh58GPL/cAQJyowf/bK8uFCylR5A4ba2MIikXggI1vtcmW+h9 HDD6QJ0QakG5cE1PeJp8Lhj5KScz5+snerGJ4HACd0EPY66oSLAN2DZ59ClBD/GR v/ZiQUKmzkxVwEGogODwL+IgOyNu/I1e8xs+lFogp3fzfhipsCje4deS33CYkIjl ewGSai3s5w9qyYufe7BfRNrTIGmTcmcR72pZydKBLwdrbTLwNdR5EZTQ7X6ILfQh aKQ0/f3VjnSrQyx3ARmBv+PjUdHEZqvTF+02FVByGXW1RExZZnpMoV/OC+0kbGEn P+XCIvGIuxstaoENw4Flk7Cqzkn/cPhqWflWhPsY0WMaIlRdxawnGw== =KM8I -----END PGP SIGNATURE-----
participants (4)
-
Charles Marcus
-
Jason Ahrens
-
Steffen Kaiser
-
vuser1@test123.ru