[Dovecot] auth-master socket access
Hey,
I'm doing a setup of dovecot (cvs) + postfix + dovecot lda (cvs).
Is there any solution to the /var/run/dovecot/auth-master access restrictions, prohibiting the user running dovecot-deliver from communicating with the master (aside from the dirty and unsafe hack to reset the permissions of the /var/run/dovecot dir after starting dovecot)?
Thanks,
Lieven
Lieven Van Acker wrote:
Is there any solution to the /var/run/dovecot/auth-master access restrictions, prohibiting the user running dovecot-deliver from communicating with the master (aside from the dirty and unsafe hack to reset the permissions of the /var/run/dovecot dir after starting dovecot)?
RTFWiki: Put the auth-master socket into another directory and write this path into dovecot-lda.conf.
Setting suid on the deliver binary should also help, but it does not work and it seems to me that it's not designed for such usage.
On Mon, 2005-09-19 at 00:59 +0200, Jakob Hirsch wrote:
Lieven Van Acker wrote:
Is there any solution to the /var/run/dovecot/auth-master access restrictions, prohibiting the user running dovecot-deliver from communicating with the master (aside from the dirty and unsafe hack to reset the permissions of the /var/run/dovecot dir after starting dovecot)?
RTFWiki: Put the auth-master socket into another directory and write this path into dovecot-lda.conf.
Setting suid on the deliver binary should also help, but it does not work and it seems to me that it's not designed for such usage.
I'm also changing this now in default config file to /var/run/dovecot-auth-master
There's really no reason why it needs to be in /var/run/dovecot, and it's probably better to place it elsewhere than to start allowing changes to /var/run/dovecot's permissions.
participants (3)
-
Jakob Hirsch
-
Lieven Van Acker
-
Timo Sirainen