Re: [Dovecot] Something weird happening...
On 2008-10-08 10:44:25 +0200, Claudio Prono wrote: I use Dovecot dovecot11-1.1.3-5.1 from OpenSuSE 11, when i send a mail from the logs i read: Oct 8 10:36:31 mail postfix/pipe[17934]: A360A851: to=[EMAIL PROTECTED], relay=dovecot, delay=0.22, delays=0.18/0/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) But, log files seems ok: -rw--- 1 777 root 56 Oct 8 10:35 dovecot-err.log -rw--- 1 777 root 302 Oct 8 10:35 dovecot-inf.log remove the log_path from your config and let it send it to syslog? it will go to /var/log/mail in that case. -- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org
Re: [Dovecot] Something weird happening...
On Oct 9, 2008, at 12:43 AM, Bill Cole wrote: Claudio Prono wrote: Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) I think you should follow the suggestion already provided: You should chown dovecot /var/log/dovecot-*.log dovecot? In the preferred configuration only login processes run using dovecot user, and the dovecot user has access to nothing. Login processes don't need to access log files. PGP.sig Description: This is a digitally signed message part
Re: [Dovecot] Something weird happening...
Timo Sirainen wrote: On Oct 9, 2008, at 12:43 AM, Bill Cole wrote: Claudio Prono wrote: Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) I think you should follow the suggestion already provided: You should chown dovecot /var/log/dovecot-*.log dovecot? In the preferred configuration only login processes run using dovecot user, and the dovecot user has access to nothing. Login processes don't need to access log files. An excellent point! I guess the better alternatives to 666 logs would be 1. use syslog 2. split deliver logs off to their own files 3. Depending on how deliver is being run, chown the logs to the user that runs deliver or put all of the uid's it might run as (i.e. all mail users) into a group and chgrp the logs to that group with 660 permissions.
Re: [Dovecot] Something weird happening...
On Thu, 09 Oct 2008 11:30:43 -0400, Bill Cole wrote: Timo Sirainen wrote: On Oct 9, 2008, at 12:43 AM, Bill Cole wrote: Claudio Prono wrote: Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) I think you should follow the suggestion already provided: You should chown dovecot /var/log/dovecot-*.log dovecot? In the preferred configuration only login processes run using dovecot user, and the dovecot user has access to nothing. Login processes don't need to access log files. An excellent point! I guess the better alternatives to 666 logs would be 1. use syslog 2. split deliver logs off to their own files 3. Depending on how deliver is being run, chown the logs to the user that runs deliver or put all of the uid's it might run as (i.e. all mail users) into a group and chgrp the logs to that group with 660 permissions. I prefer syslog and then doing any particular routing of information by rsyslog (my syslog daemon), that solves any permission issues with the logs. -- Elisamuel Resto | GPG: 18615F19 [EMAIL PROTECTED] | Source Mage GNU/Linux Tome Lead http://simplysam.us/ | http://www.sourcemage.org/ signature.asc Description: PGP signature
Re: [Dovecot] Something weird happening...
On Wed, 08 Oct 2008 10:44:25 +0200, Claudio Prono wrote: Hi to all, I use Dovecot dovecot11-1.1.3-5.1 from OpenSuSE 11, when i send a mail from the logs i read: Oct 8 10:36:31 mail postfix/pipe[17934]: A360A851: to=[EMAIL PROTECTED], relay=dovecot, delay=0.22, delays=0.18/0/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) But, log files seems ok: -rw--- 1 777 root 56 Oct 8 10:35 dovecot-err.log -rw--- 1 777 root 302 Oct 8 10:35 dovecot-inf.log According to the below output, the above output is wrong. User with UID 777 does not exist, hence, the Permission denied. You should chown dovecot /var/log/dovecot-*.log Also processess seems right: root 17965 0.0 0.0 2052 584 ?Ss 10:35 0:00 /usr/sbin/dovecot root 17966 0.0 0.2 8564 2172 ?S10:35 0:00 dovecot-auth root 17967 0.0 0.2 8564 2356 ?S10:35 0:00 dovecot-auth -w dovecot 17969 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17970 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17971 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17972 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17973 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17974 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login -- Elisamuel Resto | GPG: 18615F19 [EMAIL PROTECTED] | Source Mage GNU/Linux Tome Lead http://simplysam.us/ | http://www.sourcemage.org/ signature.asc Description: PGP signature
Re: [Dovecot] Something weird happening...
Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) Now i have another error (written in log of dovecot!) deliver([EMAIL PROTECTED]): Oct 08 11:08:20 Error: Can't connect to auth server at /var/run/dovecot/auth-master: Permission denied Seems all a problem of user running dovecot...is not root? Dunno why... In config there isn't nothing to do so. Any suggestion? Thank you, Claudio. Claudio Prono ha scritto: Sorry, mine error. I have tried to make readable and writeble to all the files, so i have do wrongly chown 777 files. Now is fixed, but still recieve error: -rw--- 1 root root 224 Oct 8 10:57 dovecot-err.log -rw--- 1 root root 888 Oct 8 10:57 dovecot-inf.log The log is: Oct 8 10:57:28 mail postfix/smtpd[18296]: C878485F: client=localhost[127.0.0.1] Oct 8 10:57:28 mail postfix/cleanup[18288]: C878485F: message-id=[EMAIL PROTECTED] Oct 8 10:57:28 mail postfix/qmgr[3303]: C878485F: from=[EMAIL PROTECTED], size=1310, nrcpt=1 (queue active) Oct 8 10:57:28 mail postfix/smtpd[18296]: disconnect from localhost[127.0.0.1] Oct 8 10:57:28 mail postfix/pipe[18290]: 8E90385E: to=[EMAIL PROTECTED], relay=dspam, delay=0.39, delays=0.1/0.01/0/0.28, dsn=2.0.0, status=sent (delivered via dspam service) Oct 8 10:57:28 mail postfix/qmgr[3303]: 8E90385E: removed Oct 8 10:57:29 mail postfix/pipe[18298]: C878485F: to=[EMAIL PROTECTED], relay=dovecot, delay=0.23, delays=0.17/0.01/0/0.05, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) What can be? Elisamuel Resto ha scritto: On Wed, 08 Oct 2008 10:44:25 +0200, Claudio Prono wrote: Hi to all, I use Dovecot dovecot11-1.1.3-5.1 from OpenSuSE 11, when i send a mail from the logs i read: Oct 8 10:36:31 mail postfix/pipe[17934]: A360A851: to=[EMAIL PROTECTED], relay=dovecot, delay=0.22, delays=0.18/0/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) But, log files seems ok: -rw--- 1 777 root 56 Oct 8 10:35 dovecot-err.log -rw--- 1 777 root 302 Oct 8 10:35 dovecot-inf.log According to the below output, the above output is wrong. User with UID 777 does not exist, hence, the Permission denied. You should chown dovecot /var/log/dovecot-*.log Also processess seems right: root 17965 0.0 0.0 2052 584 ?Ss 10:35 0:00 /usr/sbin/dovecot root 17966 0.0 0.2 8564 2172 ?S10:35 0:00 dovecot-auth root 17967 0.0 0.2 8564 2356 ?S10:35 0:00 dovecot-auth -w dovecot 17969 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17970 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17971 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17972 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17973 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17974 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login -- Claudio Prono Systems Development @ Atpss.net Srl, Divisione Implementazione Sistemi Via San Bernardino, 17 - 10137 Torino (TO) - IT Tel +39-011.32.72.100 Fax +39-011.32.46.497 PGP Fingerprint: 75C2 4049 E23D 2FBF A65F 40DB EA5C 11AC C2B0 3647 Disclaimer: http://atpss.net/disclaimer
Re: [Dovecot] Something weird happening...
Sorry, mine error. I have tried to make readable and writeble to all the files, so i have do wrongly chown 777 files. Now is fixed, but still recieve error: -rw--- 1 root root 224 Oct 8 10:57 dovecot-err.log -rw--- 1 root root 888 Oct 8 10:57 dovecot-inf.log The log is: Oct 8 10:57:28 mail postfix/smtpd[18296]: C878485F: client=localhost[127.0.0.1] Oct 8 10:57:28 mail postfix/cleanup[18288]: C878485F: message-id=[EMAIL PROTECTED] Oct 8 10:57:28 mail postfix/qmgr[3303]: C878485F: from=[EMAIL PROTECTED], size=1310, nrcpt=1 (queue active) Oct 8 10:57:28 mail postfix/smtpd[18296]: disconnect from localhost[127.0.0.1] Oct 8 10:57:28 mail postfix/pipe[18290]: 8E90385E: to=[EMAIL PROTECTED], relay=dspam, delay=0.39, delays=0.1/0.01/0/0.28, dsn=2.0.0, status=sent (delivered via dspam service) Oct 8 10:57:28 mail postfix/qmgr[3303]: 8E90385E: removed Oct 8 10:57:29 mail postfix/pipe[18298]: C878485F: to=[EMAIL PROTECTED], relay=dovecot, delay=0.23, delays=0.17/0.01/0/0.05, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) What can be? Elisamuel Resto ha scritto: On Wed, 08 Oct 2008 10:44:25 +0200, Claudio Prono wrote: Hi to all, I use Dovecot dovecot11-1.1.3-5.1 from OpenSuSE 11, when i send a mail from the logs i read: Oct 8 10:36:31 mail postfix/pipe[17934]: A360A851: to=[EMAIL PROTECTED], relay=dovecot, delay=0.22, delays=0.18/0/0/0.04, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot-err.log: Permission denied ) But, log files seems ok: -rw--- 1 777 root 56 Oct 8 10:35 dovecot-err.log -rw--- 1 777 root 302 Oct 8 10:35 dovecot-inf.log According to the below output, the above output is wrong. User with UID 777 does not exist, hence, the Permission denied. You should chown dovecot /var/log/dovecot-*.log Also processess seems right: root 17965 0.0 0.0 2052 584 ?Ss 10:35 0:00 /usr/sbin/dovecot root 17966 0.0 0.2 8564 2172 ?S10:35 0:00 dovecot-auth root 17967 0.0 0.2 8564 2356 ?S10:35 0:00 dovecot-auth -w dovecot 17969 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17970 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17971 0.0 0.1 3476 1572 ?S10:36 0:00 pop3-login dovecot 17972 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17973 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login dovecot 17974 0.0 0.1 3484 1584 ?S10:36 0:00 imap-login -- Claudio Prono Systems Development @ Atpss.net Srl, Divisione Implementazione Sistemi Via San Bernardino, 17 - 10137 Torino (TO) - IT Tel +39-011.32.72.100 Fax +39-011.32.46.497 PGP Fingerprint: 75C2 4049 E23D 2FBF A65F 40DB EA5C 11AC C2B0 3647 Disclaimer: http://atpss.net/disclaimer
Re: [Dovecot] Something weird happening...
On Wed, 2008-10-08 at 11:12 +0200, Claudio Prono wrote: Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) Now i have another error (written in log of dovecot!) deliver([EMAIL PROTECTED]): Oct 08 11:08:20 Error: Can't connect to auth server at /var/run/dovecot/auth-master: Permission denied Seems all a problem of user running dovecot...is not root? Dunno why... In config there isn't nothing to do so. deliver isn't normally run as root, unless you've made it setuid-root. So the log files and the auth-master socket need to be writable by the user who runs deliver (as defined in Postfix's master.cf). (Of course the user running deliver also needs to have access to all users' mails. If you're using system users you'll need to make deliver setuid-root.) signature.asc Description: This is a digitally signed message part
Re: [Dovecot] Something weird happening...
Claudio Prono wrote: Very strange, i have tryied to chmod 666 all log files, like that: -rw-rw-rw- 1 root root 681 Oct 8 11:08 dovecot-err.log -rw-rw-rw- 1 root root 1039 Oct 8 11:02 dovecot-inf.log (Is terrible i know, but only a test) I think you should follow the suggestion already provided: You should chown dovecot /var/log/dovecot-*.log Now i have another error (written in log of dovecot!) deliver([EMAIL PROTECTED]): Oct 08 11:08:20 Error: Can't connect to auth server at /var/run/dovecot/auth-master: Permission denied Seems all a problem of user running dovecot...is not root? Dunno why... In config there isn't nothing to do so. Any suggestion? The auth-master permission problem is different, but the configuration you provided does not give enough information to identify a certain solution. It does imply that you have not followed the relevant documentation for using the LDA: http://wiki.dovecot.org/LDA http://wiki.dovecot.org/LDA/Postfix You need to make sure that whatever user you are running *deliver* as (which is a function of your postfix config) has read/write access to the master socket, which has its user, group, and permissions set by the dovecot config.