8 messages in net.sourceforge.lists.courier-maildropRe: [maildropl] Fwd: Maildrop virtual...
FromSent OnAttachments
Mark KrenzNov 15, 2004 5:56 am 
Petri RiihikallioNov 15, 2004 10:32 am 
Mark KrenzNov 15, 2004 1:41 pm 
Tony EarnshawNov 16, 2004 2:39 am 
Petri RiihikallioNov 16, 2004 12:24 pm 
Mark KrenzNov 16, 2004 9:06 pm 
mail...@d-g-c.deNov 17, 2004 1:32 am 
Petri RiihikallioNov 17, 2004 1:06 pm 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:Re: [maildropl] Fwd: Maildrop virtual destination home directory permissionsActions...
From:Mark Krenz (ma@suso.org)
Date:Nov 16, 2004 9:06:38 pm
List:net.sourceforge.lists.courier-maildrop

Actually, thanks to all who helped. Andrew Reilly was wrote me inidividually with the answer that worked. Basically, I needed to change the homedir of the virtual account and everything below it to not be world readable. Thus, the error message is rather misleading.

One other thing that wasn't clear to me is that the maildir and the homedir fields are concatenated together to get the location of the maildir. Also, its used to determine where the .mailfilter file is located for the virtual user. So I had to put

/home/vmail/slugbug.org/testing

as the homedir and Maildir/ as the maildir. This wasn't very obvious from the documentation. I've put up these facts at the following location so that people will find it when searching from now on.

http://www.suso.org/opensource/docs/courier/maildrop_virtual_permissions.php

On Tue, Nov 16, 2004 at 08:24:31PM GMT

Fedora Core 2 Linux (with all updates) 2.6.9 kernel Postfix 2.0.18 (running as user postfix) (with mysql) maildrop 1.7.0 (compiled and configured with Mysql extensions) MySQL 4.0.21

OK. I was hoping you were using LDAP as the back-end, since that's what I am more familiar with.

[..snip...] /* Postfix seems to be configured fine */

maildrop unix - n n - - pipe flags=R user=vmail argv=/usr/bin/maildrop -d ${recipient}

Maildrop will be started as user vmail. A non-root process can't change its identity. See below.

And then I have the domain that I'm sending mail to setup to use maildrop: as its transport. Then there is a user called test@slugbug.org that is setup in the mysql table that is referenced by the virtual_mailbox_maps setting. The test@slugbug.org account has a homedir of /home/vmail/slugbug.org/testing and a Maildir set to /home/vmail/slugbug.org/testing/Maildir

You need to set Maildrop to read from the MySQL database as well. (For LDAP there is a configuration file "maildropldap.config". See your docs.) There you need to specify almost the same information as with Postfix. You configure the field to read uid and gid from, if you have it set up that way. For true virtual setup you set a static value for the global uid and gid. You also tell which fields contain the maildir and homedir of the user.

Yes, maildrop does make one more lookup, since Postfix doesn't set these values on the command line invoking Maildrop.

Is also has a uid and gid field that is set to 510 for each. This is the uid and gid of another account 'mark'. Not the vmail account. The vmail account owns /home/vmail and /home/vmail/slugbug.org. The mark account owns /home/vmail/slugbug.org/testing and everything beneath that.

When pipe starts Maildrop as user 'vmail', it can't su to 'mark'.

I don't think this is your problem, though. I think Maildrop is taking wrong turns long before.

So when maildrop errors with the error that the home directory is world writable, which homedirectory is it refering too? And what should the ownership and permissions be set to?

Perhaps the error message is misleading, referring to a symptom, not pointing to the cause.

Let me know if there is any other information you need to help me.

Could you share the Maildrop-MySQL configuration file? Cover first the username and password accessing the database, though.

-- Cheers Petri GSM +358 400 505 939

-- Mark S. Krenz IT Director Suso Technology Services, Inc. http://suso.org/