Got it. Permissions for invoking sslserver are fine, no need to change
anything. I traced the problem to vauth_getpw(), where vpopmail's user is
compared to the domain uid/gid. Thus vadddomain -u mike4 creates the entire
domain skeleton with uid/gid 516 (mike4), and vauth_getpw returns 507 for
vpopmail - so it fails.
The solution is vadddomain -g 516 which creates the domain skeleton with
vpopmail:mike4 owner and group. This ensures vpopmail can authenticate whilst
maintaining group rights for file system quotas via group quotas.
Dovecot imap/imaps/pop3s still authenticate but ONLY if I specify a custom sql
query in it's configuration AND update the vpopmail mysql table uid/gid with
the corresponding values i.e. 507/516. Although this method works, I still feel
there's something funky going with dovecot+vpopmail authentication. Having to
manually update the vpopmail table with uid/gid after domain creation isn't
very elegant, can something be done about this? Is it not possible to modify
vpopmail to store the uid/gid instead of the constant values of 0/0?
> Date: Mon, 21 Dec 2009 08:47:30 -0600
> From: m...@inter7.com
> To: firstname.lastname@example.org
> Subject: Re: [vchkpw] vdeliver perimission denied for vadddomain -u
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> Michael Mussulis wrote:
> > I am back, and I want to thank you ALL for all your help and assistance,
> > you've all been very kind, patient and helpful. Sorry I've dropped off
> > the map these last couple of weeks, but I underwent an operation to
> > remove a cyst on my right kidney.
> Glad to hear your kidney is now cyst free :)
> > /var/log/maillog
> > Dec 21 14:37:37 localhost vpopmail: vchkpw-smtps: vpopmail user
> > not found postmas...@test10.com:192.168.0.12
> > Does anyone have any idea why this happening under sslserver?
> It would appear that vchkpw may not have permissions to look up the user.
> Make sure
> it's not being run as an underprivileged user. The sslserver arguments
> related to
> running the qmail-smtp process should be identical to tcpserver.
> - --
> Matt Brookings <m...@inter7.com> GnuPG Key FAE0672C
> Software developer Systems technician
> Inter7 Internet Technologies, Inc. (815)776-9465
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> -----END PGP SIGNATURE-----
Got more than one Hotmail account? Save time by linking them together