Hi,
I have the problem with SELinux and dovecot-lda configure. I have virtual mailboxes on the server and becouse of needig use dovecot's sieve plugin, I need postfix to deliver msg via Dovecot LDA.
There is a log:
Code:
27797 comm="dovecot-lda" capability=6 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability
type=SYSCALL msg=audit(1453806315.517:1330998): arch=c000003e syscall=116 success=no exit=-1 a0=1 a1=1993580 a2=7fe00fa7bcdb a3=632e3432706c6568 items=0 ppid=27796 pid=27797 auid=0 uid=5135 gid=600 euid=0 suid=0 fsuid=0 egid=600 sgid=600 fsgid=600 tty=(none) ses=57619 comm="dovecot-lda" exe="/usr/libexec/dovecot/dovecot-lda" subj=unconfined_u:system_r:dovecot_deliver_t:s0 key=(null)
type=AVC msg=audit(1453806316.544:1330999): avc: denied { setgid } for pid=27807 comm="dovecot-lda" capability=6 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability
type=SYSCALL msg=audit(1453806316.544:1330999): arch=c000003e syscall=116 success=no exit=-1 a0=1 a1=225a578 a2=7f4f8a32fcdb a3=1e items=0 ppid=27796 pid=27807 auid=0 uid=5135 gid=600 euid=0 suid=0 fsuid=0 egid=600 sgid=600 fsgid=600 tty=(none) ses=57619 comm="dovecot-lda" exe="/usr/libexec/dovecot/dovecot-lda" subj=unconfined_u:system_r:dovecot_deliver_t:s0 key=(null)
type=AVC msg=audit(1453806316.560:1331000): avc: denied { setgid } for pid=27808 comm="dovecot-lda" capability=6 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability
type=SYSCALL msg=audit(1453806316.560:1331000): arch=c000003e syscall=116 success=no exit=-1 a0=1 a1=d86570 a2=7f847f810cdb a3=1a items=0 ppid=27806 pid=27808 auid=0 uid=5135 gid=600 euid=0 suid=0 fsuid=0 egid=600 sgid=600 fsgid=600 tty=(none) ses=57619 comm="dovecot-lda" exe="/usr/libexec/dovecot/dovecot-lda" subj=unconfined_u:system_r:dovecot_deliver_t:s0 key=(null)
Any idea?
