I am getting:
Oct 03 20:19:52 auth: Error: net_connect_unix(auth-worker) in directory
/run/dovecot failed: Permission denied (euid=5000(vmail) egid=5000(vmail)
missing +r perm: /run/dovecot/auth-worker, dir owned by 0:0 mode=0755)
Because:
root at mailserver:/run/dovecot# ls -l auth-worker
srw------- 1 dovecot root 0 Oct 3 20:09 auth-worker
When it really needs to be "vmail" (I think).
I have set:
service auth-worker {
# Auth worker process is run as root by default, so that it can access
# /etc/shadow. If this isn't necessary, the user should be changed to
# $default_internal_user.
user = vmail
group = vmail
}
in 10-master.conf (because I'm using postfixadmin/mariadb to store user
information, I don't *want* access to /etc/shadow)
I set this about an hour ago, then applied some security patches and
restarted (ubuntu 20.04 system) and it didn't change. I then manually did a
"chown vmail: of that file, and I got further. I had a different problem
that I resolved, and then restarted dovecot, and /run/dovecot/auth-worker
reverted.
I'm not sure where I need to set this.
Thanks.
Petro.
:wq
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<https://dovecot.org/pipermail/dovecot/attachments/20211003/694839e6/attachment.html>
dovecot at ptld.com
2021-Oct-03 23:02 UTC
Authentication problems due to file ownership issue.
> Oct 03 20:19:52 auth: Error: net_connect_unix(auth-worker) in directory > /run/dovecot failed: Permission denied (euid=5000(vmail) > egid=5000(vmail) missing +r perm: /run/dovecot/auth-worker, dir owned > by 0:0 mode=0755)> I set this about an hour ago, then applied some security patches and > restartedFiles and directories inside of /run/ are created every time you reboot the server. If you manually change the owner or permissions it will only stay that way until next reboot. You have to edit config settings for the service in question for how you want those directories / files created on reboot. I do not know how to do that in ubuntu but in RHEL you edit (or create) config files in /etc/tmpfiles.d/ Package installed default on RHEL /usr/lib/tmpfiles.d/dovecot.conf "d /var/run/dovecot 0755 root dovecot -" Not sure what you are trying to do, but another option might be give user vmail dovecot group access so vmail can access files with a dovecot group read permission. usermod -a -G dovecot vmail