Hi, I am trying to configure Pigeonhole to get filters in RoundCube working. Unfortunately I am getting following error in DoveCot log instead: May 01 14:35:41 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<getpwuid() error>) egid=248(<getgrgid() error>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) May 01 14:35:41 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<unknown>) egid=248(<unknown>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) May 01 14:36:00 master: Warning: Killed with signal 15 (by pid=37695 uid=0 code=kill) May 01 14:36:36 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<getpwuid() error>) egid=248(<getgrgid() error>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) May 01 14:36:36 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<unknown>) egid=248(<unknown>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) May 01 15:17:08 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<getpwuid() error>) egid=248(<getgrgid() error>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) May 01 15:17:08 managesieve-login: Error: auth: connect(login) in directory / failed: Permission denied (euid=248(<unknown>) egid=248(<unknown>) missing +x perm: /, we're not in group 202, dir owned by 0:202 mode=0750) Above appears in log, when I am trying to access filters configuration in RC or manually connecting to sieve using telnet. My DoveCot configuration: # 2.2.27 (c0f36b0): /usr/local/dovecot/etc/dovecot/dovecot.conf # Pigeonhole version 0.4.15 (97b3da0) # OS: Linux 4.4.38 x86_64 Slackware 14.2 ext4 debug_log_path = /var/log/dovecot/dovecot-debug.log first_valid_gid = 12 first_valid_uid = 8 info_log_path = /var/log/dovecot/dovecot-info.log last_valid_gid = 12 last_valid_uid = 8 listen = *, [::] log_path = /var/log/dovecot/dovecot.log mail_location = maildir:/var/mail/%d/%n managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } protocols = imap pop3 sieve service auth { user = dovecot } service imap-login { user = dovecot } service pop3-login { user = dovecot } ssl_cert = </etc/letsencrypt/live/domain/fullchain.pem ssl_cipher_list = ALL:!ADH:!LOW:!SSLv2:!SSLv3:!EXP:!aNULL:+HIGH:+MEDIUM ssl_key = # hidden, use -P to show it userdb { driver = prefetch } verbose_proctitle = yes protocol pop3 { pop3_uidl_format = %08Xu%08Xv } What could be a reason of that? -- skype. kamil.kapturkiewicz tel/whatsapp. +44 758 306 8467
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 1 May 2017, Kamil Kapturkiewicz wrote:> Unfortunately I am getting following error in DoveCot log instead: > > May 01 14:35:41 managesieve-login: Error: auth: connect(login) in directory / > failed: Permission denied (euid=248(<getpwuid() error>) egid=248(<getgrgid() > error>) missing +x perm: /, we're not in group 202, dir owned by 0:202 > mode=0750) > May 01 14:35:41 managesieve-login: Error: auth: connect(login) in directory / > failed: Permission denied (euid=248(<unknown>) egid=248(<unknown>) missing +x > perm: /, we're not in group 202, dir owned by 0:202 mode=0750)this error is pretty clear: Directory "/" cannot be accessed by user 248:248 looks like a chroot'ed environment? Anyway, either: + the accessing user ID of 248:248 is wrong, + the owning user 0:202 is wrong or + the access permissions should include "chmod o+x /"> May 01 14:36:00 master: Warning: Killed with signal 15 (by pid=37695 uid=0 > code=kill)This shouldn't happen. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEVAwUBWQg/rXz1H7kL/d9rAQL9Lwf5AUZX8VE4XX7b5hWWm7CkfcHJCnCuJy37 Hfw598Z+dljSAQ8Ki38vRtIKSSN7jVxOqiMPLKLh3+FcVVqOor/tbybDbV8rzhb5 u/+vynfvLENtwiEQAQ+4JjGOKQYX8rCU+Vz9Ft2my9ZR4qeUru4bxtduX/NI/GeZ YBnhQHZdX/2iAhW8MLX19aPEm7a82qBwdzv5BeQ3iFq56woYOFj+6peC710aY6uM 6wyURGoO3lvfaTnl4D1n3M6Nw7IuImHVtU1fLnUh8y+Z2Nv5cArxTWOpQFjzsVTS 3dDNchnDXym2xpjYM2IA/GGKAyYdbwSLTyvWGiEq8LtQQhAnnY425w==sg2z -----END PGP SIGNATURE-----
Hi Steffen, 248 is a dovecot, 202 is dovenull, both users are in theirs groups across. If I change ownership of /usr/local/dovecot to dovecot.dovecot, then dovecot is correcting it to root.root for some reason. Does it mean that dovecot should be running as root only? What does it mean / here? is it / in filesystem or it is / for dovecot in /usr/local/dovecot ? May 01 14:36:00 master: Warning: Killed with signal 15 (by pid=37695 uid=0 code=kill) this was caused by restarting of Dovecot. On 02/05/17 09:13, Steffen Kaiser wrote:> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 1 May 2017, Kamil Kapturkiewicz wrote: > >> Unfortunately I am getting following error in DoveCot log instead: >> >> May 01 14:35:41 managesieve-login: Error: auth: connect(login) in >> directory / failed: Permission denied (euid=248(<getpwuid() error>) >> egid=248(<getgrgid() error>) missing +x perm: /, we're not in group >> 202, dir owned by 0:202 mode=0750) >> May 01 14:35:41 managesieve-login: Error: auth: connect(login) in >> directory / failed: Permission denied (euid=248(<unknown>) >> egid=248(<unknown>) missing +x perm: /, we're not in group 202, dir >> owned by 0:202 mode=0750) > > this error is pretty clear: > > Directory "/" cannot be accessed by user 248:248 > > looks like a chroot'ed environment? Anyway, either: > > + the accessing user ID of 248:248 is wrong, > + the owning user 0:202 is wrong or > + the access permissions should include "chmod o+x /" > >> May 01 14:36:00 master: Warning: Killed with signal 15 (by pid=37695 >> uid=0 code=kill) > > This shouldn't happen. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1 > > iQEVAwUBWQg/rXz1H7kL/d9rAQL9Lwf5AUZX8VE4XX7b5hWWm7CkfcHJCnCuJy37 > Hfw598Z+dljSAQ8Ki38vRtIKSSN7jVxOqiMPLKLh3+FcVVqOor/tbybDbV8rzhb5 > u/+vynfvLENtwiEQAQ+4JjGOKQYX8rCU+Vz9Ft2my9ZR4qeUru4bxtduX/NI/GeZ > YBnhQHZdX/2iAhW8MLX19aPEm7a82qBwdzv5BeQ3iFq56woYOFj+6peC710aY6uM > 6wyURGoO3lvfaTnl4D1n3M6Nw7IuImHVtU1fLnUh8y+Z2Nv5cArxTWOpQFjzsVTS > 3dDNchnDXym2xpjYM2IA/GGKAyYdbwSLTyvWGiEq8LtQQhAnnY425w=> =sg2z > -----END PGP SIGNATURE-----