[Dovecot] using dovecot deliver
Hi all!
This is my first posting to the list and I really could use some help in getting postfix using dovecot as virtual_transport. I get an error in dovecot-deliver.log that says "Can't connect to auth server at /var/spool/postfix/private/dovecot: Permission denied" Im using postfix as MTA with two virtual domains and virtual users. This is my dovecot -n output:
# 1.1.11: /etc/dovecot/dovecot.conf # OS: Linux 2.6.31-17-generic-pae i686 Ubuntu 9.10 ext4 base_dir: /var/run/dovecot/ log_path: /var/log/dovecot info_log_path: /var/log/dovecot.info log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s managesieve ssl_cert_file: /etc/ssl/smtpd.crt ssl_key_file: /etc/ssl/smtpd.key disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login valid_chroot_dirs: /var/spool/vmail mail_location: maildir:/home/vmail/%d/%n mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve sieve_storage(default): sieve_storage(imap): sieve_storage(pop3): sieve_storage(managesieve): ~/sieve sieve(default): sieve(imap): sieve(pop3): sieve(managesieve): ~/.dovecot.sieve auth default: mechanisms: plain login verbose: yes passdb: driver: passwd-file args: /etc/dovecot/passwd userdb: driver: passwd-file args: /etc/dovecot/users socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/sieve
Kind regards Pelle
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Wed, 13 Jan 2010, Per Laine wrote:
in dovecot-deliver.log that says "Can't connect to auth server at /var/spool/postfix/private/dovecot: Permission denied" Im using
IMHO the error message is very descriptive: "Permission denied" :)
passdb: driver: passwd-file args: /etc/dovecot/passwd userdb: driver: passwd-file args: /etc/dovecot/users
Looks like system users
socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix
IMHO Postfix executes deliver with system user privilegues, hence, "postfix" is not correct. The permission must allow all your system users to connect to this socket.
Or follow the adivce on http://wiki.dovecot.org/LDA/Postfix "If you need multiple uids/gids you'll need to set deliver setuid root or invoke it through sudo. See the LDA main page how to do this securely." Dovecot picks up the destination user from "-d" then.
Regards,
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux)
iQEVAwUBS02k6L+Vh58GPL/cAQKwXgf/Vuta5wcSCGhiXpB551pjLbatD8YaBbYu oC/EhRev0pLsLSvA4KH2mDcVlQcTJOoBIsNKeb+a+l6EPRMZLLHlkfoF/iUnus+J fYRnz74LtYZGwHa3O9OM72ccTPyjbeiksSsDZ7AwQah/eOuLs0yhU0cT4Qj6jZE7 xV0+kD/0PXknI2+ffptf41qNBrC3Sk3yEcHQSeeLdmrPoxOuioKReZiEnXC4S8hE YGQFZHASCoa7juPbHaE5xtcFFcJggG+IiqV+j/yhr3CD328Oi1nD3kNP/4/dxl0/ GUXrQEcRlX4Lvv4kaQocfEhPOpH3rO1mPS6X11O8RZtoJvVA7ynx4w== =EdC3 -----END PGP SIGNATURE-----
On 01/13/2010 11:48 AM Steffen Kaiser wrote:
On Wed, 13 Jan 2010, Per Laine wrote:
in dovecot-deliver.log that says "Can't connect to auth server at /var/spool/postfix/private/dovecot: Permission denied" Im using
IMHO the error message is very descriptive: "Permission denied" :)
socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix
IMHO Postfix executes deliver with system user privilegues, hence, "postfix" is not correct. The permission must allow all your system users to connect to this socket.
This client socket is used by Postfix for 'SMTP-AUth'. Deliver, Dovecot's LDA, prefers the Unix-domain socket from the auth-master. (e.g. http://wiki.dovecot.org/HowTo/PostfixAndDovecotSASL)
But the error message in the original mail mentions the socket at /var/spool/postfix/private/dovecot, and this is not the configured one.
Per is using Unbuntu Linux, (see dovecot -n output in the first mail.)
Per, maybe you've got a funny called file:
/etc/dovecot/dovecot-postfix.conf. If so, edit this file, as mentioned
in your /etc/dovecot/dovecot.conf
Regards, Pascal
The trapper recommends today: cafebabe.1001314@localdomain.org
Ok, i don't have any auth-master socket in /var/run/dovecot/, and i never installed the dovecot-postfix package. I'm think it will trash my existing config.
On Wed, Jan 13, 2010 at 2:53 PM, Pascal Volk <user+dovecot@localhost.localdomain.org> wrote:
On 01/13/2010 11:48 AM Steffen Kaiser wrote:
On Wed, 13 Jan 2010, Per Laine wrote:
in dovecot-deliver.log that says "Can't connect to auth server at /var/spool/postfix/private/dovecot: Permission denied" Im using
IMHO the error message is very descriptive: "Permission denied" :)
socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix
IMHO Postfix executes deliver with system user privilegues, hence, "postfix" is not correct. The permission must allow all your system users to connect to this socket.
This client socket is used by Postfix for 'SMTP-AUth'. Deliver, Dovecot's LDA, prefers the Unix-domain socket from the auth-master. (e.g. http://wiki.dovecot.org/HowTo/PostfixAndDovecotSASL)
But the error message in the original mail mentions the socket at /var/spool/postfix/private/dovecot, and this is not the configured one.
Per is using Unbuntu Linux, (see
dovecot -noutput in the first mail.) Per, maybe you've got a funny called file: /etc/dovecot/dovecot-postfix.conf. If so, edit this file, as mentioned in your /etc/dovecot/dovecot.confRegards, Pascal
The trapper recommends today: cafebabe.1001314@localdomain.org
-- Mvh Per Laine Tel. 0703 - 82 50 84 per@laine.se
On 01/13/2010 03:36 PM Per Laine wrote:
Ok, i don't have any auth-master socket in /var/run/dovecot/, and i never installed the dovecot-postfix package. I'm think it will trash my existing config.
Please stop top-posting.
If there is no auth-master socket you have to configure one: http://wiki.dovecot.org/LDA#With_a_lookup
Regards, Pascal
The trapper recommends today: c01dcafe.1001316@localdomain.org
On Wed, Jan 13, 2010 at 4:11 PM, Pascal Volk <user+dovecot@localhost.localdomain.org> wrote:
On 01/13/2010 03:36 PM Per Laine wrote:
Ok, i don't have any auth-master socket in /var/run/dovecot/, and i never installed the dovecot-postfix package. I'm think it will trash my existing config.
Please stop top-posting.
If there is no auth-master socket you have to configure one: http://wiki.dovecot.org/LDA#With_a_lookup
Regards, Pascal
The trapper recommends today: c01dcafe.1001316@localdomain.org
Thank you for the help. I had to change user and grp to vmail after I created the socket but after that i got i working. Haven't got sieve to work yet but that's another story. Again, thank you Regards Pelle
participants (3)
-
Pascal Volk
-
Per Laine
-
Steffen Kaiser