Results 1 to 5 of 5

Thread: dovecot - configuration

  1. #1
    Join Date
    Jun 2008
    Location
    South-West France
    Posts
    1,031

    Default dovecot - configuration

    Dovecot refuse to access to ssl key/cert in specific folder
    Files are owned by root:root
    Changing owner from root:root to dovecot:dovecot or dovenull:dovecot does not help.
    Replacing my own Key/cert by new one generated using script from /usr/share/doc/packages/dovecot/makecrt.sh does not help

    Setting key in /etc/dovecot/conf.d/10-ssl.conf like
    Code:
    ssl_cert = </data/test_dovecot/dovecot.crt
    ssl_key = </data/test_dovecot/dovecot.pem
    return error :
    Code:
    juin 30 15:36:50 ASUS-G75VW systemd[1]: Stopped Dovecot IMAP/POP3 email server.
    juin 30 15:36:50 ASUS systemd[1]: Started Dovecot IMAP/POP3 email server.
    juin 30 15:36:50 ASUS dovecot[10636]: doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/10-ssl.conf line 49: ssl_cert: Can't open file /data/test_dovecot/dovecot.crt: Permission denied
    juin 30 15:36:50 ASUS systemd[1]: dovecot.service: Main process exited, code=exited, status=89/n/a
    juin 30 15:36:50 ASUS systemd[1]: dovecot.service: Unit entered failed state.
    juin 30 15:36:50 ASUS systemd[1]: dovecot.service: Failed with result 'exit-code'.
    Code:
    ASUS:~ # stat -c "%a %n" /data
    777 /data
    
    ASUS:~ # stat -c "%a %n" /data/test_dovecot
    777 /data/test_dovecot
    
    ASUS:~ # stat -c "%a %n" /data/test_dovecot/dovecot.crt
    444 /data/test_dovecot/dovecot.crt
    
    ASUS:~ # stat -c "%a %n" /data/test_dovecot/dovecot.pem
    600 /data/test_dovecot/dovecot.pem
    but setting like
    Code:
    ssl_cert = </etc/dovecot/test_dovecot/dovecot.crt
    ssl_key = </etc/dovecot/test_dovecot/dovecot.pem
    or like
    Code:
    ssl_cert = </etc/ssl/test_dovecot/dovecot.crt
    ssl_key = </etc/ssl/test_dovecot/dovecot.pem
    give no errors
    Code:
    juin 30 15:26:24 ASUS systemd[1]: Stopped Dovecot IMAP/POP3 email server.
    juin 30 15:26:24 ASUS systemd[1]: Started Dovecot IMAP/POP3 email server.
    juin 30 15:26:24 ASUS dovecot[10341]: master: Dovecot v2.2.31 (65cde28) starting up for imap (core dumps disabled)
    Any help is welcome
    Thanks for helping. JCD
    __________

    server leap 15-- ASUS g75vw KDE leap 42.3 -- ASUS g750JZ KDE leap 42.3 -- acer aspire s13 win 10 home -- HP Omen win 10 home - scan EPSON V500 - Brother HL2250DN - Samsung CLP-325W

  2. #2

    Default Re: dovecot - configuration

    I'm not sure where you got a .pem certificate from. Please look at this thread:

    https://forums.opensuse.org/showthre...e-with-Dovecot
    I don’t have anything to hide, but I don’t have anything I want to show you either.

  3. #3

    Default Re: dovecot - configuration

    I have not dug into the Apparmor profiles yet, but dovecot definitely has one defined. That maybe the issue here.
    I don’t have anything to hide, but I don’t have anything I want to show you either.

  4. #4

    Default Re: dovecot - configuration

    Quote Originally Posted by d3vnull View Post
    I have not dug into the Apparmor profiles yet, but dovecot definitely has one defined. That maybe the issue here.
    https://bugzilla.opensuse.org/show_bug.cgi?id=1099764
    I don’t have anything to hide, but I don’t have anything I want to show you either.

  5. #5
    Join Date
    Jun 2008
    Location
    South-West France
    Posts
    1,031

    Default Re: dovecot - configuration

    OK.

    THank you very much
    Thanks for helping. JCD
    __________

    server leap 15-- ASUS g75vw KDE leap 42.3 -- ASUS g750JZ KDE leap 42.3 -- acer aspire s13 win 10 home -- HP Omen win 10 home - scan EPSON V500 - Brother HL2250DN - Samsung CLP-325W

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •