[Dovecot] dovecot-acl-list not honouring owner / permissions that are set on dovecot-shared
Hi,
I've just upgraded our dovecot installation from 1.0.15 to 1.1.13.
This went smoothly and just worked -- thank you very much for writing such a high performance and robust piece of software.
However, we have a shared mailbox that people can subscribe to. After upgrading to 1.1.13 ... dovecot tries to create a dovecot-acl-list file in the top level of this ... but it creates it chown'd to the first logged in user with a umask of -rw- --- ---
A. -rw------- 1 userA shared 17179 2009-06-25 11:10 /home/imapshared/SharedMaildir/dovecot-acl-list
Everyone else who tried to access the shared folder (and hence dovecot tried to read / update the dovecot-acl-list file) caused an error to be logged to the error.log
I changed the permissions (once I realised what had gone wrong) to match those on the dovecot-shared file and all was well as everyone can now read/update it.
B. -rw-rw---- 1 imapshared shared 17179 2009-06-25 11:19 /home/imapshared/SharedMaildir/dovecot-acl-list
-rw-rw---- 1 imapshared shared 0 2008-04-25 13:20 /home/imapshared/SharedMaildir/dovecot-shared
Also from time to time the permissions seem to get changed back on dovecot-acl-list inexplicably to those in situation A -- usually following a restart of dovecot but I haven't been able to reproduce this reliably.
This seems like a bug to me ... do you agree / is there a sensible work-around?
The declaration in dovecot.conf for the shared namespace sets user specific CONTROL and INDEX locations so that users can independently subscribe to folders and mark messages as read on an individual basis.
Many thanks, Stu.
On Thu, 2009-06-25 at 12:07 +0100, Stuart Rowan wrote:
However, we have a shared mailbox that people can subscribe to. After upgrading to 1.1.13 ... dovecot tries to create a dovecot-acl-list file in the top level of this ... but it creates it chown'd to the first logged in user with a umask of -rw- --- ---
A. -rw------- 1 userA shared 17179 2009-06-25 11:10 /home/imapshared/SharedMaildir/dovecot-acl-list
See if setting umask = 0007 to dovecot.conf helps? With v1.2+ this is no longer necessary.
Timo Sirainen wrote:
On Thu, 2009-06-25 at 12:07 +0100, Stuart Rowan wrote:
However, we have a shared mailbox that people can subscribe to. After upgrading to 1.1.13 ... dovecot tries to create a dovecot-acl-list file in the top level of this ... but it creates it chown'd to the first logged in user with a umask of -rw- --- ---
A. -rw------- 1 userA shared 17179 2009-06-25 11:10 /home/imapshared/SharedMaildir/dovecot-acl-list
See if setting umask = 0007 to dovecot.conf helps? With v1.2+ this is no longer necessary.
Well that problem has not reoccurred yet today but I've made the change you suggest anyway.
Now we're on to: dovecot: 2009-06-25 18:50:15 Error: IMAP(strr): fchown() failed with file /home/local/strr/Maildir/index/Archive/.junk/dovecot.index.log: Operation not permitted dovecot: 2009-06-25 18:54:15 Error: IMAP(strr): fchown() failed with file /home/local/strr/Maildir/index/Archive/.junk/dovecot.index.log: Operation not permitted
Bizarrely the similarly placed .junk-2008 folder has no problems creating the 'strr' specific index files.
I've tried deleting the folders / files and chowning/chmodding until I'm blue in the face and since the umask change they are now created with a umask of 0007 ... but the error keeps coming back in the logs.
Let me know if you need more information
Cheers, Stu.
On Thu, 2009-06-25 at 19:01 +0100, Stuart Rowan wrote:
dovecot: 2009-06-25 18:50:15 Error: IMAP(strr): fchown() failed with file /home/local/strr/Maildir/index/Archive/.junk/dovecot.index.log: Operation not permitted
Do you have .junk/dovecot-shared file? It tries to preserve its group in all created files. Setting g+s to it makes it not to preserve the group.
Timo Sirainen wrote:
On Thu, 2009-06-25 at 19:01 +0100, Stuart Rowan wrote:
dovecot: 2009-06-25 18:50:15 Error: IMAP(strr): fchown() failed with file /home/local/strr/Maildir/index/Archive/.junk/dovecot.index.log: Operation not permitted
Do you have .junk/dovecot-shared file? It tries to preserve its group in all created files. Setting g+s to it makes it not to preserve the group.
It had a group of root instead of the correct group (stupid me for not spotting this all day) ... having just done chgrp all is well.
Timo, thank you -- that's what I call support :-)
Cheers, Stu.
participants (2)
-
Stuart Rowan
-
Timo Sirainen