On 7.5.2012, at 22.11, Jeff Lacki wrote: >> Im sorry to ask another basic question, but Ive tried to find this >> answer for several hours now and it eludes me. Im getting the following >> when dovecot tries to deliver an email: >> >> May 6 19:29:21 mydomain dovecot: lda: Debug: auth input: jeff >> home=/opt/imapdata/j/jeff/INBOX uid=1001 gid=999 >> May 6 19:29:21 mydomain dovecot: lda(jeff): Fatal: setgid(999(vmail) from >> userdb lookup) failed with euid=999(vmail), gid=500(jeff), egid=500(jeff): >> Operation not permitted (This binary should probably be called with process >> group set to 999(vmail) instead of 500(jeff)) >> >> I cannot seem to find where its trying to call dovecot-lda with uid(jeff) at?
Postfix is calling dovecot-lda as jeff. > I forgot to show my dovecot-lda, it seems correct and its setuid as well: > > -rwsr-x--x 1 vmail vmail 75789 Apr 28 08:15 dovecot-lda* You shouldn't make it setuid in a vmail setup. And by removing the suid bit from it I'm guessing the error message will also change to say that euid=jeff. > postfix master.cf: > > virtual_transport = vmail > mailbox_command=/opt/dovecot/libexec/dovecot/dovecot-lda -f "$SENDER" -a > "$RECIPIENT" mailbox_command shouldn't be used to deliver mails to virtual users. Use http://wiki2.dovecot.org/LDA/Postfix#Virtual_users instead.
