On 17.08.2017 13:43, ATHANASE Jean-Ren? wrote:> Hi,
>
> Dovecot version : 2.2.22 (fe789d2)
> Operating system :
> DISTRIB_ID=Ubuntu
> DISTRIB_RELEASE=16.04
> DISTRIB_CODENAME=xenial
> DISTRIB_DESCRIPTION="Ubuntu 16.04.2 LTS"
> CPU architecture : Linux 4.4.67-1-pve #1 SMP PVE 4.4.67-92 (Fri, 23
> Jun 2017 08:22:06 +0200) x86_64 GNU/Linux
> FIle system : local
>
> UID GID
> Aug 17 11:47:28 azizee dovecot: imap(jra11[*5063*:*5011*]): Debug:
> Effective uid=5063, gid=5011, home=/var/spool/domaines/vitalnet/jra/
> Aug 17 11:47:28 azizee dovecot: imap(jra11[5063:5011]): Debug:
> Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no,
> list=yes, subscriptions=yes
> location=maildir:/var/spool/domaines/vitalnet/jra/
> Aug 17 11:47:28 azizee dovecot: imap(jra11[5063:5011]): Debug:
> maildir++: root=/var/spool/domaines/vitalnet/jra, index=, indexpvt=,
> control=, inbox=/var/spool/domaines/vitalnet/jra, alt> Aug 17 11:47:28
azizee dovecot: imap(jra11[5063:5011]): *Error*:
>
open(/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,)
> failed: *Permission denied* (euid=*5063*(<unknown>)
> egid=*5011*(<unknown>) missing +r perm:
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,)
>
> Ldap configuration :
> user_attrs >
uid=user,userPassword=password,homeDirectory=home,uidNumber=uid,gidNumber=gid
>
> ll
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,
> -rw------- 1 5095 5011 438 Aug 16 15:29
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,
>
>
> If I set with the command line "chmod g=rw
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,",
> this file email is treated by Dovecot, per example, i have deleted it.
>
> ll
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee\:2\,ST
>
> -rw-rw---- 1 5095 5011 438 Aug 16 15:29
>
/var/spool/domaines/vitalnet/jra/cur/1502890181.V704I34050fM371072.azizee:2,ST
>
> What's the problem of my configuration ?
>
> Best regards,
For some reason that file lacks read-permissions for 5063:5011 (which
come from ldap). Your file shows that it's lacking UID 5063. Why is it
owned by 5095? Did you change them?
Aki