> On 22/07/2025 17:35 EEST Xavier Humbert via dovecot <[email protected]> 
> wrote:
> 
>  
> Le 22/07/2025 16:28, Odhiambo Washington a écrit :
> >
> >
> > On Tue, Jul 22, 2025 at 4:42 PM Xavier Humbert via dovecot 
> > <[email protected]> wrote:
> >
> >     Hi,
> >
> >     I recently experienced strange errors in mailq :
> >
> >     [root@numenor ~]# mailq
> >     -Queue ID-  --Size-- ----Arrival Time---- -Sender/Recipient-------
> >     56BF31C9391    2320 Fri Jul 18 03:42:33 [email protected]
> >     (temporary failure. Command output: lda(postfix): Error:
> >     net_connect_unix(/var/run/dovecot/stats-writer) failed: Permission
> >     denied)
> >     [email protected]
> >
> >     All other messages are getting in without error.
> >     Furthermore these are probably spam which shouldn't get in, since
> >     postfix@ is not in the authorized recipients
> >
> >     When it happens, it is always spam for postfix@
> >
> >     Any idea ?
> >
> >
> > Check your dovecot config for the permissions: Postfix user needs 
> > access to /var/run/dovecot/stats-writer
> >
> > V2.4:
> > service stats {
> >      unix_listener stats-writer {
> >          mode = 0660
> >          user = ??
> >      }
> > }
> >
> > v2.3
> > unix_listener stats-writer {
> >     user = ??
> >     group = ??
> >     mode = 0660
> >   }
> > }
> >
> >
> > -- 
> > Best regards,
> > Odhiambo WASHINGTON,
> > Nairobi,KE
> > +254 7 3200 0004/+254 7 2274 3223
> >  In an Internet failure case, the #1 suspect is a constant: DNS.
> > "Oh, the cruft.", egrep -v '^$|^.*#' ¯\_(ツ)_/¯ :-)
> > [How to ask smart questions: 
> > http://www.catb.org/~esr/faqs/smart-questions.html]
> 
> Here is the relevant part of dovecot config :
> 
> service stats {
>      unix_listener stats-reader {
>          user = $default_internal_user
>          group = $default_internal_user
>          mode = 0660
>      }
> 
>      unix_listener stats-writer {
>          user = $default_internal_user
>          group = $default_internal_user
>          mode = 0660
>      }
> }
> 
> All other mails get in without problem. I suspect it gets in, then 
> confuses the mail system because of proxy:unix:passwd.byname in postfix 
> config local_recipient_maps
> 
> I don't need this btw.
> 
> Xavier
> 
> -- 
> Xavier HUMBERT - Unix/Win/MacOSX Sysadmin/Network Engineer
> https://www.amdh.fr
>    Le 22/07/2025 16:28, Odhiambo Washington a ecrit :
> 
>      On Tue, Jul 22, 2025 at 4:42PM Xavier Humbert via dovecot
>      <[1][email protected]> wrote:
> 
>        Hi,
>        I recently experienced strange errors in mailq :
>        [root@numenor ~]# mailq
>        -Queue ID-  --Size-- ----Arrival Time---- -Sender/Recipient-------
>        56BF31C9391    2320 Fri Jul 18 03:42:33  [2][email protected]
>        (temporary failure. Command output: lda(postfix): Error:
>        net_connect_unix(/var/run/dovecot/stats-writer) failed: Permission
>        denied)
>                                                  [3][email protected]
>        All other messages are getting in without error.
>        Furthermore these are probably spam which shouldn't get in, since
>        postfix@ is not in the authorized recipients
>        When it happens, it is always spam for postfix@
>        Any idea ?
> 
>      Check your dovecot config for the permissions: Postfix user needs access
>      to /var/run/dovecot/stats-writer
>      V2.4:
>      service stats {
>           unix_listener stats-writer {
>               mode = 0660
>               user = ??
>           }
>      }
>      v2.3
>      unix_listener stats-writer {
>          user = ??
>          group = ??
>          mode = 0660
>        }
>      }
>      --
>      Best regards,
>      Odhiambo WASHINGTON,
>      Nairobi,KE
>      +254 7 3200 0004/+254 7 2274 3223
>       In an Internet failure case, the #1 suspect is a constant: DNS.
>      "Oh, the cruft.", egrep -v '^$|^.*#' -\_(Tu)_/- :-)
>      [How to ask smart
>      questions: [4]http://www.catb.org/~esr/faqs/smart-questions.html]
> 
>    Here is the relevant part of dovecot config :
> 
>    service stats {
>        unix_listener stats-reader {
>            user = $default_internal_user
>            group = $default_internal_user
>            mode = 0660
>        }
> 
>        unix_listener stats-writer {
>            user = $default_internal_user
>            group = $default_internal_user
>            mode = 0660
>        }
>    }
> 
>    All other mails get in without problem. I suspect it gets in, then
>    confuses the mail system because of proxy:unix:passwd.byname in postfix
>    config local_recipient_maps
> 
>    I don't need this btw.
> 
>    Xavier
> 
>  --
>  Xavier HUMBERT - Unix/Win/MacOSX Sysadmin/Network Engineer
>  [5]https://www.amdh.fr
> 

Easy fix would be to change the mode to 0666. For most people it's not a 
problem that stats-writer is word-writable. Also, in 2.4 you should use 
$SET:default_internal_user.

Another really good fix is to switch to LMTP.

Aki

_______________________________________________
dovecot mailing list -- [email protected]
To unsubscribe send an email to [email protected]

Reply via email to