[Dovecot] dovecot.log file permissions and ownership
Using FreeBSD-7.2 and Dovecot v1.2.4
what user does dovecot use to write to its log file? I have the logfile located in the /var/log directory.
I have Postfix configured to use 'virtual' users and use dovecot for delivery.
While dove can write to the file when accessed for POP services, when accessed via Postfix, I get this error message:
Oct 25 07:02:15 scorpio postfix/pipe[56956]: B01BD2287E: to=<user@domain.com>, relay=dovecot, delay=220, delays=220/0.01/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot.log: Permission denied )
I have used the following ownership types for the file:
- root:wheel
- dovecot:dovecot
- root:dovecot
- dovecot:wheel
The only thing that works all the time is to give the file full r/w (0666) permission. That seems extreme.
-- Jerry gesbbb@yahoo.com
|::::======= |::::======= |=========== |=========== |
A nuclear war can ruin your whole day.
On Sun, 2009-10-25 at 07:14 -0400, Jerry wrote:
Using FreeBSD-7.2 and Dovecot v1.2.4
what user does dovecot use to write to its log file? I have the logfile located in the /var/log directory.
Most of Dovecot writes to it as root, but deliver is a special case.
I have Postfix configured to use 'virtual' users and use dovecot for delivery.
While dove can write to the file when accessed for POP services, when accessed via Postfix, I get this error message:
Oct 25 07:02:15 scorpio postfix/pipe[56956]: B01BD2287E: to=<user@domain.com>, relay=dovecot, delay=220, delays=220/0.01/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot.log: Permission denied )
Then you either need to make it writable to the user that runs pipe, or use a different file. http://wiki.dovecot.org/LDA#Logging
I have used the following ownership types for the file:
- root:wheel
- dovecot:dovecot
- root:dovecot
- dovecot:wheel
Never use "dovecot" user for anything at all. It's internal to Dovecot and you never need to give it access to anything or set any file to be owned by dovecot.
The only thing that works all the time is to give the file full r/w (0666) permission. That seems extreme.
What user did you give to Postfix's pipe in master.cf? That's the user you need.
participants (2)
-
Jerry
-
Timo Sirainen