sieve runtime error Fileinto: Permission denied

Bron Gondwana brong at fastmail.fm
Tue May 24 06:50:01 EDT 2016


On Tue, May 24, 2016, at 20:16, Patrick Boutilier via Info-cyrus wrote:
> On 05/24/2016 01:56 AM, OBATA Akio via Info-cyrus wrote:
> > On Tue, 24 May 2016 12:32:07 +0900, Bron Gondwana via Info-cyrus
> > <info-cyrus at lists.andrew.cmu.edu> wrote:
> >
> >> On Tue, May 24, 2016, at 10:44, OBATA Akio via Info-cyrus wrote:
> >>> On Tue, 24 May 2016 07:25:42 +0900, Bron Gondwana via Info-cyrus
> >>> <info-cyrus at lists.andrew.cmu.edu> wrote:
> >>>
> >>> > On Mon, May 23, 2016, at 22:47, Sundeep Singh Nanuwa via Info-cyrus
> >>> wrote:
> >>> >> On 23/05/16 13:35, Bron Gondwana via Info-cyrus wrote:
> >>> >> > You need to have "anyone p" acl to fileinto anything other than
> >>> inbox.
> >>> >> That didn't work unfortunately.
> >>> >
> >>> > Deliver into INBOX works, fileinto doesn't.  It's ACLs for sure.
> >>> You need the 'p'
> >>> > ACL set for the user that lmtpd runs as (or anyone).
> >>> >
> >>> > Unless there's a bug in your particular version of Cyrus, that
> >>> should work.  If you
> >>> > could give us that and a copy of your lam output again with the
> >>> anyone ACLs set,
> >>> > maybe that will help.
> >>>
> >>> In which version of Cyrus release, 'p' permission is required even
> >>> with "sieve fileinto"?
> >>> I know that only direct lmtp deliver with subaddress require it.
> >>
> >> Within lmtpd, subaddress delivery and fileinto are identical.  I've
> >> just checked back to the 2.3 branch and the logic is the same there
> >> too - if there's an error delivering to the named mailbox, we fall
> >> back to the INBOX with an authstate based on the username, which is
> >> why you don't need 'p' on the INBOX.
> >
> > I'm using "fileinto" without 'anyone p' permission on 2.4.18.
> > I believe that sieve scripts will run as the user, whereas subaddress is
> > lmtpd user.
> >
> 
> Same here. I don't have "anyone p" set and fileinto works on 2.4.18 .

Hrm, OK.  I guess I haven't spent as much time in that area of the code,
and my understanding was wrong.  Doesn't explain why default delivery
works but fileinto doesn't for this case then...

Bron.

-- 
  Bron Gondwana
  brong at fastmail.fm


More information about the Info-cyrus mailing list