User Tools

Site Tools


doc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
Next revisionBoth sides next revision
doc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot [2021/05/24 17:47] – [Dovecot quota status service for Postfix] niccolodoc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot [2022/09/30 11:38] – [Dovecot Local Delivery Agent] niccolo
Line 251: Line 251:
 mailbox_command = /usr/lib/dovecot/dovecot-lda -f "$SENDER" -a "$RECIPIENT" mailbox_command = /usr/lib/dovecot/dovecot-lda -f "$SENDER" -a "$RECIPIENT"
 </file> </file>
 +
 +**WARNING**: At least in **Debian 11 Bullseye** it seems that the **dovecot-lda** sometimes (not always!) tries to write to the **Dovecot Stats Service** using the **/run/dovecot/stats-writer** socket. Unfortunately the socket is owned by **root:dovecot** and has mode **0660** (default Debian settings), whereas the LDA is invoked by Postfix with just the user's privileges. So you will find error messages like this into the mail.log:
 +
 +<code>
 +postfix/local[76866]: 7E67B7D3F4: to=<user@domain.tld>, ...,
 +    status=bounced (Command died with status 134:
 +    "/usr/lib/dovecot/dovecot-lda -f "$SENDER" -a "$RECIPIENT"".
 +    Command output: lda(lica-marilena):
 +    Error: net_connect_unix(/run/dovecot/stats-writer) failed:
 +    Permission denied Aborted Unable to flush stdout: Broken pipe )
 +</code>
 +
 +It seems that the quickest and simplest solution is to make the socket **0666 mode** (which will risk the stats service to be abused). Add the following snippet to **/etc/dovecot/conf.d/15-lda.conf**:
 +
 +<file>
 +service stats {
 +  unix_listener stats-writer {
 +    mode = 0666
 +  }
 +}
 +</file>
 +
 +See the following posts about the problem:
 +
 +  * [[https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961033|stats-writer permission issue when using LDA via procmail - Debian bug #961033]]
 +  * [[https://dovecot.org/pipermail/dovecot/2022-February/124267.html|postfix, dovecot-lda, /run/dovecot/stats-writer socket permision and local user delivery, again]]
 +
  
 ===== Sieve filtering ===== ===== Sieve filtering =====
Line 896: Line 923:
 action=554 5.2.2 Quota exceeded (mailbox for user is full) action=554 5.2.2 Quota exceeded (mailbox for user is full)
 </file> </file>
 +
 +The **554 Quota exceeded error** should be returned when the **actual user's quota** plus the announced **size** will exceed the filesystem **soft quota** plus the **quota_grace** percentage.
  
 Another way to check the service using a single command line is using **netcat**: Another way to check the service using a single command line is using **netcat**:
doc/appunti/linux/sa/postfix_spamassassin_clamav_dovecot.txt · Last modified: 2023/10/30 11:09 by niccolo