Hi all,
I'm currently trying to get my public/shared mailbox access working
again after migration to 2.4.1. I thought I would have done all required
changes, but Dovecot 2.4.1 seems to act slightly different than 2.3.x.
I've tried to understand what is wrong, read the documentation multiple
times and searched the internet for a solution, but unfortunately
without final success. I hope you can shed some light on how to get the
original behavior back.
Let me explain my original setup, which worked for years without any
issues. I've setup the following shared folders as an adminstrator and
set the access right on a directly level, e.g.
/home/imapshared imapshared:users 0770
/home/imapshared/.Parents imapshared:parents 0770
/home/imapshared/.Kids imapshared:kids 0770
This was my working Dovecot 2.3 configuration:
namespace {
type = shared
separator = /
prefix = '#Shared/'
location = maildir:/home/imapshared:INDEXPVT=~/.imapmail/shared
subscriptions = no
}
User, who were allowed to access the folder, got e.g. the 'parents' or
'kids' group assigned as secondary group, the primary one is 'users'.
Based on the documentation I've modified the Dovecot 2.4 configuration
as follows:
namespace shared {
type = shared
mail_driver = maildir
separator = /
prefix = '#Shared/'
mail_path = /home/imapshared
mail_index_private_path = ~/.imapmail/shared
subscriptions = no
}
This is what I already found out or tried to adjust:
- I found out that the shared folder can be accessed if the shared
folder system group is set to 'users' (primary group), but by default
not if a system group is used which is the secondary group of a user
(e.g. parents or kids)
- In the documentation I found a hint, that Dovecot by default would
now only accept the primary group. By setting the following parameter
additional groups should also be accepted:
mail_access_groups = yes
Unfortunately, that doesn't restore the orinal functionality.
- In the documentation I found a hint, that all folders which
have been created by an administrator, should now be of type
'public' but changing that setting doesn't work either.
"It's important that the namespace type is "public" regardless of
whether you set the namespace prefix to "shared." or something else."
This is the error which is logged, which is not true:
Error: maildir: stat(/home/imapshared/.Parents/tmp) failed: Permission
denied (euid=2000(father) egid=100(users) missing +x perm:
/home/imapshared/.Parents, we're not in group 203(parents), dir owned by
2226:203 mode=0770)
This is the user used to access the folder:
uid=2000(father) gid=100(users) groups=100(users), ..., 203(parents), ...
Do you have any idea or hint how to solve this issue and provide an
example what needs to be modified in my configuration to get the
original functionality back?
Thanks
Juergen
--
Mail: [email protected]
GPG Key available
--
Mail: [email protected]
_______________________________________________
dovecot mailing list -- [email protected]
To unsubscribe send an email to [email protected]
