Postfix, SASL and LDAPDB: no worthy mech found
Simon Matter
simon.matter at invoca.ch
Thu May 20 13:46:28 EDT 2010
> On Thu, 20 May 2010 11:23:14 -0500, Dan White <dwhite at olp.net> wrote:
>> I checked an older Debian install I have and smtpd is chrooted out of
> the
>> box.
>>
>> Check your /etc/postfix/master.cf entry for smtpd:
>>
>> #
>>
> ==========================================================================
>> # service type private unpriv chroot wakeup maxproc command + args
>> # (yes) (yes) (yes) (never) (100)
>> #
>>
> ==========================================================================
>> smtp inet n - - - - smtpd
>>
>> To troubleshoot, mark all your services as non chrooted temporarily, or
> you
>> could modify your /etc/init.d/postfix script, underneath:
>>
>> # see if anything is running chrooted.
>>
>> and copy the contents of /usr/lib/sasl2 into the chroot.
>
> Ugh !!!
> Thanks ! once again, I've been to hasty to answer. I completely forgot
> about this behavior, it's so rare to have chrooted daemons by default...
The postfix author recommends these days to not use chroot and so does the
postfix in a default configuration. IIRC the debian packages do chroot
which often results in some kind of problems with advanced configurations.
Simon
More information about the Cyrus-sasl
mailing list