On Thu, Sep 07, 2017 at 09:34:55PM +0000, Fazzina, Angelo wrote:
> Victor: I messed with it a little but no change.
I did not suggest "messing" with it. :-)
> [root@mail2 ~]# bash -c "ls -ld /var{,/lib{,/postfix{,/master.lock}}}"
> drwxr-xr-x. 20 root root 4096 Mar 2 2017 /var
> drwxr-xr-x. 29 root root 4096 Sep 7 03:46 /var/lib
> drwx------. 2 postfix postfix 4096 Sep 7 16:07 /var/lib/postfix
> -rw-r--r--. 1 postfix postfix 0 Sep 7 16:07 /var/lib/postfix/master.lock
Note those "." characters at the end of the file mode, they likely
indicate some sort of file-access ACL beyond the file mode:
https://www.cloudinsidr.com/content/understanding-and-settingchanging-access-privileges-on-unixlinux-files-and-directories-mode-bits-and-alternative-access-methods-explained/
GNU's "ls" command uses a dot (".") to indicate a file with an
*SELinux security context and no other alternate access method*.
A file with *any other combination of alternate access methods*
is marked with a *+* character.
So you've been SELinux'ed, now turn that off or configure it
properly.
> [root@mail2 ~]# chmod 744 /var/lib/postfix/
You should not do that, the "postfix set-permissions" command sets
the directory mode to 0700.
> [root@mail2 ~]# bash -c "ls -ld /var{,/lib{,/postfix{,/master.lock}}}"
> drwxr-xr-x. 20 root root 4096 Mar 2 2017 /var
> drwxr-xr-x. 29 root root 4096 Sep 7 03:46 /var/lib
> drwxr--r--. 2 postfix postfix 4096 Sep 7 16:07 /var/lib/postfix
> -rw-r--r--. 1 postfix postfix 0 Sep 7 16:07 /var/lib/postfix/master.lock
And yet the funny "." characters remain...
--
Viktor.
