[Dovecot] deliver LDA permission problem

Venilton Junior venilton.junior at sercompe.com.br
Thu Feb 15 16:30:59 UTC 2007

Just use the same username for deliver at /etc/posfix/master.cf 

As follows my config:
dovecot   unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -d ${recipient}

And make it sure, that you have this same config at /etc/dovecot.conf:

auth default_with_listener {
        mechanisms = plain login
        userdb ldap {
                args = /etc/dovecot-ldap.conf
        passdb ldap {
                args = /etc/dovecot-ldap.conf
        socket listen {
                master {
                        path = /var/run/dovecot/auth-master
                        mode = 0660
                        user = vmail
                        group = mail


Here you can find a lot of information about Dovecot LDA, hope this can help you:



Venilton C. Junior

Sercompe Computadores Ltda.

Office:   +55 47 3431-9700
Fax:       +55 47 3431-9747
Mobile: +55 47 9653-5872


-----Original Message-----
From: dovecot-bounces at dovecot.org [mailto:dovecot-bounces at dovecot.org] On Behalf Of Dick Middleton
Sent: quinta-feira, 15 de fevereiro de 2007 12:17
To: Dovecot Mailing List
Subject: Re: [Dovecot] deliver LDA permission problem

Timo Sirainen wrote:
> On Thu, 2007-02-08 at 13:53 +0000, Dick Middleton wrote:
>> Feb  8 13:09:35 deliver(<email-addr>): setgid(5002) failed: Operation not permitted
>> Feb  8 13:09:36 deliver(<email-addr>): setgid(5001) failed: Operation not permitted

> 1) Make deliver setuid-root so it has permissions to do the setgid()

This is how I resolved the problem.  I'm not sure it's ideal; I have an aversion 
to setguid programs but I don't see what else you can do.

> Yea, it should. This has been in my TODO list for a while. Finally
> implemented:

Good oh!



More information about the dovecot mailing list