On 16-08-17 08:57, voytek at sbt.net.au wrote:> what permissions/ownership should /etc/dovecot/files have?
>
> keep seeing this error below, I can correct as per log, BUT, wanted first
> to check what it should be, rather than me 'fiddling'
>
> thanks, V
>
> SQL user is vmail
> first_valid_uid = 2000
> last_valid_uid = 2000
>
> # ls -al
> total 60
> drwxr-xr-x 5 root root 4096 Aug 16 14:45 .
> drwxr-xr-x 82 root root 4096 Aug 16 08:34 ..
> drwxr-xr-x 2 root root 4096 Aug 12 21:22 conf.d
> -rw------- 1 vmail dovecot 0 Nov 5 2013
dovecot-master-users-password
> -rw------- 1 vmail dovecot 735 Aug 16 14:45 dovecot-mysql.conf
> -rw------- 1 vmail dovecot 491 Aug 15 23:09 dovecot-share-folder.conf
> -rw------- 1 vmail dovecot 320 Aug 15 23:09 dovecot-used-quota.conf
> -rw-r--r-- 1 root root 3414 Aug 16 14:43 dovecot.conf
>
>
> Aug 16 16:28:01 auth: Error: passwd-file:
> open(/etc/dovecot/dovecot-master-users-password) failed: Permission denied
> (euid=97(dovecot) egid=97(dovecot) missing +r perm:
> /etc/dovecot/dovecot-master-users-password, dir owned by 0:0 mode=0755)
The auth daemon (which has nothing to do with delivery) needs access to
the mysql database, and wants to read the master user password file. The
auth daemon runs as user 'dovecot' which is, according to your directory
listing, not allowed to access the file. The error message is quite clear.
You could probably set ownership to vmail/dovecot with permissions 440
to fix it. If you're only allowing minimal permissions, why would user
vmail need write access to that file?
Kind regards,
Tom