Bug#626211: dovecot-common: ssl-params uses hardcoded /var/lib/dovecot/ssl-parameters.dat, should use ssl_parameters_file config variable

Mon, 09 May 2011 15:03:17 -0700 

Package: dovecot-common
Version: 1:2.0.12-1
Severity: normal

dovecot's ssl-params sub-daemon appears to hardcode the path and
filename to its parameters file.

However, the other dovecot tools appear to look for the file using the
ssl_parameters_file configuration variable.

Launching dovecot as a non-privileged user without write permissions
to /var/lib/dovecot produces the following warnings on stderr, even if
ssl_parameters_file is set to a location where the user has read/write
permissions:

2011-05-09 16:38:42 master: Info: Dovecot v2.0.12 starting up (core dumps 
disabled)
2011-05-09 16:38:42 ssl-params: Error: 
open(/var/lib/dovecot/ssl-parameters.dat) failed: Permission denied
2011-05-09 16:38:42 ssl-params: Fatal: 
creat(/var/lib/dovecot/ssl-parameters.dat.tmp) failed: Permission denied
2011-05-09 16:38:42 ssl-params: Error: child process failed with status 22784

Feel free to forward this upstream if you think it would be useful.

thanks for maintaining dovecot in debian!

Regards,

        --dkg


-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (500, 'testing'), (200, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.38-2-686 (SMP w/1 CPU core)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages dovecot-common depends on:
ii  adduser                 3.112+nmu2       add and remove users and groups
ii  libbz2-1.0              1.0.5-6          high-quality block-sorting file co
ii  libc6                   2.11.2-11        Embedded GNU C Library: Shared lib
ii  libpam-runtime          1.1.2-2          Runtime support for the PAM librar
ii  libpam0g                1.1.2-2          Pluggable Authentication Modules l
ii  libssl1.0.0             1.0.0d-2         SSL shared libraries
ii  openssl                 1.0.0d-2         Secure Socket Layer (SSL) binary a
ii  ucf                     3.0025+nmu2      Update Configuration File: preserv
ii  zlib1g                  1:1.2.3.4.dfsg-3 compression library - runtime

dovecot-common recommends no packages.

Versions of packages dovecot-common suggests:
ii  ntp                 1:4.2.6.p2+dfsg-1+b2 Network Time Protocol daemon and u

-- Configuration Files:
/etc/default/dovecot changed [not included]

-- no debconf information



-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to