Permissions errors on dovecot conf files

The postfix/dovecot mailserver I’ve had running here for quite some time has suddenly started throwing up authentication errors due to dovecot conf files permissions, the server was upgraded from 11.3 64-bit to 11.4 64-bit a few months ago but this issue didn’t crop up until today. The last updates done on the server were about two weeks ago and that’s when it was last rebooted, so I don’t think the upgrade or any updates are the cause

I’m getting the errors on /etc/dovecot/dovecot.conf and /etc/dovecot/dovecot-sql.conf, here’s the info from /var/log/mail

dovecot: auth(default): Can't open configuration file /etc/dovecot/dovecot-sql.conf: Permission denied

Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied )

This is what I get in response to running /etc/init.d/dovecot restart

Jul 10 18:38:28 godzooky dovecot: Dovecot v1.2.17 starting up (core dumps disabled)
Jul 10 18:38:28 godzooky dovecot: auth(default): Can't open configuration file /etc/dovecot/dovecot-sql.conf: Permission denied
Jul 10 18:38:28 godzooky dovecot: dovecot: child 4374 (auth) returned error 89 (Fatal failure)
Jul 10 18:38:28 godzooky dovecot: dovecot: Fatal: Auth process died too early - shutting down

Checked the permissions on the files and this was the state of them:

dovecot.conf root:vmail owner & group can read, write & execute

dovecot-sql.conf root:root owner & group can read, write and execute

I can’t remember the original permissions on the files but I think they were/should be owned by vmail:vmail with owner & group read & write privileges, don’t really understand why conf files should have execute permissions

I have tried resetting the permissions on both files as vmail:vmail root:vmail & root:root with & without the +x permission in all cases but I get the same errors every time so I’m at a bit of a loss as to what else I can try to fix this

Any suggestions as to what else I can try most appreciated

Btw, does anyone know whether root should be a member of the vmail group, can’t remember and root is not a member of vmail at present

Ignore this thread now please

I’ve fixed it

Hello

Could you explain how you fix it ?!?
I have the same problem !

Thank you

On 2011-07-10 20:06, Ecky wrote:

> The
> last updates done on the server were about two weeks ago and that’s when
> it was last rebooted, so I don’t think the upgrade or any updates are
> the cause

Mmmm.

> I’m getting the errors on /etc/dovecot/dovecot.conf and
> /etc/dovecot/dovecot-sql.conf, here’s the info from /var/log/mail
>
>
> Code:
> --------------------
> dovecot: auth(default): Can’t open configuration file /etc/dovecot/dovecot-sql.conf: Permission denied
>
> Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied )
> --------------------

But you don’t put here what the permissions are.

> Checked the permissions on the files and this was the state of them:
>
> dovecot.conf root:vmail owner & group can read, write & execute
>
> dovecot-sql.conf root:root owner & group can read, write and execute

I prefer the actual output of ls -l, and let me interpret it.


-rw-r--r-- 1 root root 51672 Oct 22  2010 /etc/dovecot/dovecot.conf
-rw-r--r-- 1 root root 5097 May 25 13:22 /etc/dovecot/dovecot-sql-example.conf


> Any suggestions as to what else I can try most appreciated

Apparmour.

Stop it, then restart dovecot. If it works, restart AA, then use the
wizzard in YaST to correct AA profile for dovecot.

There have been updates to AA profiles, dovecot included.


Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)

On 2011-07-10 23:36, Ecky wrote:
>
> Ignore this thread now please
>
> I’ve fixed it

Please explain.


Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)