|Main Archive Page > Month Archives > postfix-users archives|
I tried to set up Postfix (2.6.6) on a Centos6 system (yes, I've filed a bug for them to bump to something 2.8.x-ish)... as:
Dec 1 20:26:05 localhost postfix/smtpd: warning: connect to Milter service unix:/var/spool/MIMEDefang/mimedefang.sock: Permission denied
# ls -ld /var/spool/MIMEDefang /var/spool/MIMEDefang/mimedefang.sock
drwxr-x---. 3 defang defang 4096 Nov 18 18:48 /var/spool/MIMEDefang
srwxr-x---. 1 defang defang 0 Nov 18 18:48 /var/spool/MIMEDefang/mimedefang.sock
the permissions on the socket itself are dubious (I'm thinking that 0660 would be more appropriate), but even after changing those it still fails.
This was after doing:
# usermod -a -G defang postfix
so it would have group permissions to the directory and socket, but it looks like smtpd sheds its other gid's early on.
My main.cf file contains:
smtpd_milters = unix:/var/spool/MIMEDefang/mimedefang.sock
milter_default_action = tempfail
milter_protocol = 6
Would it make sense to add a parameter of additional gid's that you want smtpd to retain?
Also, what about having a MIMEDEFANG_README file since the MILTER_README doesn't cover the specifics of interfacing to Mimedefang?