[Dovecot] Dovecot + SELinux permission problems
janfrode at tanso.net
Sun Jun 23 22:18:17 EEST 2013
On Sun, Jun 23, 2013 at 04:21:17PM +0100, Johnny wrote:
> I had thought SELinux would log something, but /var/log/audit/audit.log
> is blank...
Are you running auditd? I believe that if you're not running auditd, the
denials should be logged to the kernel ring buffer. Does "dmesg" show
any denials ?
Likely dovecot doesn't have access user_home_dir_t/user_home_t. Is all
users maildirs below /home/user/data1/Maildir/ ? If so, you can probably
fix this by creating a labeling rule for this, and re-label everything
below this directory:
semanage fcontext -a -t mail_spool_t "/home/user/data1/Maildir(/.*)?"
restorecon -R /home/user/data1/Maildir
More information about the dovecot