Odd problem with dovecot

Daniel J Walsh dwalsh at redhat.com
Tue May 6 17:58:54 UTC 2008

Hash: SHA1

Chris Adams wrote:
> I'm trying to set up dovecot for IMAP.  I'm using an external auth
> program and a static userdb setting to define the home directories (all
> owned by the same UID/GID).  I set the whole directory tree to
> mail_spool_t (thinking I'd avoid any SELinux access issues that way).
> What is odd is that it fails when SELinux is in enforcing mode, but not
> in permissive, BUT I don't get any errors when it fails (e.g. no
> "denied" messages in the kernel or audit logs).
> I've straced the daemon, and it fails at a chdir().  I know the
> permissions are okay (it works when the system is in permissive mode),
> so I figured it has to be related to SELinux, but I can't figure out
> how.
> Suggestions?
semodule -DB

will turn on all dontaudit rules.

Try your test.

semodule -B

will turn rules back on.

Check for AVC messages.
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org


More information about the fedora-selinux-list mailing list