thr3ads.net - dovecot - [Dovecot] using dovecot deliver [Jan 2010]

If this information is useful, please help other people find it:
Share via:

Per Laine

2010-Jan-13 10:38 UTC

[Dovecot] using dovecot deliver

Hi all!

This is my first posting to the list and I really could use some help
in getting postfix using dovecot as virtual_transport. I get an error
in dovecot-deliver.log that says "Can't connect to auth server at
/var/spool/postfix/private/dovecot: Permission denied" Im using
postfix as MTA with two virtual domains and virtual users. This is my
dovecot -n output:

# 1.1.11: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.31-17-generic-pae i686 Ubuntu 9.10 ext4
base_dir: /var/run/dovecot/
log_path: /var/log/dovecot
info_log_path: /var/log/dovecot.info
log_timestamp: %Y-%m-%d %H:%M:%S
protocols: imap pop3 imaps pop3s managesieve
ssl_cert_file: /etc/ssl/smtpd.crt
ssl_key_file: /etc/ssl/smtpd.key
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/lib/dovecot/imap-login
login_executable(imap): /usr/lib/dovecot/imap-login
login_executable(pop3): /usr/lib/dovecot/pop3-login
login_executable(managesieve): /usr/lib/dovecot/managesieve-login
valid_chroot_dirs: /var/spool/vmail
mail_location: maildir:/home/vmail/%d/%n
mail_executable(default): /usr/lib/dovecot/imap
mail_executable(imap): /usr/lib/dovecot/imap
mail_executable(pop3): /usr/lib/dovecot/pop3
mail_executable(managesieve): /usr/lib/dovecot/managesieve
mail_plugin_dir(default): /usr/lib/dovecot/modules/imap
mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3
mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve
sieve_storage(default):
sieve_storage(imap):
sieve_storage(pop3):
sieve_storage(managesieve): ~/sieve
sieve(default):
sieve(imap):
sieve(pop3):
sieve(managesieve): ~/.dovecot.sieve
auth default:
  mechanisms: plain login
  verbose: yes
  passdb:
    driver: passwd-file
    args: /etc/dovecot/passwd
  userdb:
    driver: passwd-file
    args: /etc/dovecot/users
  socket:
    type: listen
    client:
      path: /var/spool/postfix/private/auth
      mode: 432
      user: postfix
      group: postfix
plugin:
  sieve: ~/.dovecot.sieve
  sieve_dir: ~/sieve


Kind regards Pelle

Steffen Kaiser

2010-Jan-13 10:48 UTC

head link

[Dovecot] using dovecot deliver

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 13 Jan 2010, Per Laine wrote:
> in dovecot-deliver.log that says "Can't connect to auth server at
> /var/spool/postfix/private/dovecot: Permission denied" Im using
IMHO the error message is very descriptive:
"Permission denied" :)
>  passdb:
>    driver: passwd-file
>    args: /etc/dovecot/passwd
>  userdb:
>    driver: passwd-file
>    args: /etc/dovecot/users
Looks like system users
>  socket:
>    type: listen
>    client:
>      path: /var/spool/postfix/private/auth
>      mode: 432
>      user: postfix
>      group: postfix
IMHO Postfix executes deliver with system user privilegues, hence, 
"postfix" is not correct. The permission must allow all your system
users
to connect to this socket.

Or follow the adivce on http://wiki.dovecot.org/LDA/Postfix
"If you need multiple uids/gids you'll need to set deliver setuid root
or
invoke it through sudo. See the LDA main page how to do this securely."
Dovecot picks up the destination user from "-d" then.

Regards,

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBS02k6L+Vh58GPL/cAQKwXgf/Vuta5wcSCGhiXpB551pjLbatD8YaBbYu
oC/EhRev0pLsLSvA4KH2mDcVlQcTJOoBIsNKeb+a+l6EPRMZLLHlkfoF/iUnus+J
fYRnz74LtYZGwHa3O9OM72ccTPyjbeiksSsDZ7AwQah/eOuLs0yhU0cT4Qj6jZE7
xV0+kD/0PXknI2+ffptf41qNBrC3Sk3yEcHQSeeLdmrPoxOuioKReZiEnXC4S8hE
YGQFZHASCoa7juPbHaE5xtcFFcJggG+IiqV+j/yhr3CD328Oi1nD3kNP/4/dxl0/
GUXrQEcRlX4Lvv4kaQocfEhPOpH3rO1mPS6X11O8RZtoJvVA7ynx4w==EdC3
-----END PGP SIGNATURE-----

dovecot - Jan 2010 - using dovecot deliver

[Dovecot] using dovecot deliver

[Dovecot] using dovecot deliver