- Previous message: Robert Felber: "Re: Greylisting and Fallbacks"
- Maybe in reply to: Postmaster: "Maildrop not invoked ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
|
|
|
From: Tony Earnshaw (no email)
Date: Tue Jul 05 2005 - 04:19:25 EDT
man, 04.07.2005 kl. 23.26 skrev Postmaster:
[...]
> Not sure how to proceeed - sending to a local user:
>
> Jul 4 13:36:17 xxxxx maildrop[14609]: Temporary authentication
> failure.
> Jul 4 13:36:17 xxxxx postfix/local[14608]: 8E09C5A0277:
> to=<>, relay=local, delay=8464, status=deferred
> (temporary failure. Command output: ERR: authdaemon: s_connect()
> failed: Permission denied /usr/local/bin/maildrop: Temporary
> authentication failure. ) Occurs two times.
>
> The test was a valid single recepient - local user. So at least I know
> maildrop is now being called - although unsuccessfully. I found a
> gentoo-wiki.com/Maildrop_configuration that had the "-w90" parameter
> and its meaning. I run SuSE 9.2 with downloaded postfix 2.2.3 and
> gentoo looks different enough to get me in trouble. But..."who" has the
> authentication failure ? Maildrop ? the user ? Oh, and maildrop.log
> is still empty...so I get no help there. Ideas ?
My guess is that the user maildrop is running as doesn't have permission
to (read|write) the authdaemond socket. Try changing the perms of the
maildrop binary to 6555 (i.e. make it setuid, setgid). Make it owner
root, group postfix, if postfix is a maildrop trusted user. See that
/var/spool/authdaemon (or /usr/local/var/spool/authdaemon/) is group
postfix and ensure that postfix is a trusted user when you compile
maildrop. If you installed from someone else's package, substitute a
maildrop trusted user for postfix in the above (should *not* be root).
This does not have security implications, since maildrop will change uid
to that of the user before it chdirs to the user's home directory.
--Tonni
-- mail: http://www.billy.demon.nl
|
|
|