Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

unable to open input file (maildrop/xxxx)

0 views
Skip to first unread message

matthew zeier

unread,
Apr 8, 2000, 3:00:00 AM4/8/00
to

I've started noticing the errors below in syslog.

Either it just started happening or this is the first time in about a
year I actually noticed this. Postfix runs as postfix:mail. I'm only
seeing this problem on one installtion of postfix - all the others run
with the same binary installation and user/group.

I've included as much information as I thought would be necessary. Any
pointers from anyone?

Thanks.

- mz

Apr 6 16:08:01 coral.thirdcoast.net postfix/smtpd[4252]: connect from
localhost
[127.0.0.1]
Apr 6 16:08:01 coral.thirdcoast.net postfix/smtpd[4252]: 6F45C4D7FA:
client=loc
alhost[127.0.0.1]

Apr 7 11:55:06 coral.thirdcoast.net postfix/master[10910]: warning:
process /opt/postfix/libexec/pickup pid 12825 exit status 1
Apr 7 11:55:06 coral.thirdcoast.net postfix/master[10910]: warning:
/opt/postfix/libexec/pickup: bad command startup -- throttling
Apr 7 11:56:42 coral.thirdcoast.net postfix/pickup[12826]: fatal: open
input file maildrop/6F45C4D7FA: Permission denied
Apr 7 11:56:43 coral.thirdcoast.net postfix/master[10910]: warning:
process /opt/postfix/libexec/pickup pid 12826 exit status 1
Apr 7 11:56:43 coral.thirdcoast.net postfix/master[10910]: warning:
/opt/postfix/libexec/pickup: bad command startup -- throttling


coral# ls -ld /var/spool/postfix/
drwxr-xr-x 13 root staff 512 Apr 6 11:59
/var/spool/postfix//
coral# ls -ld /var/spool/postfix/maildrop/
drwx-wx--T 2 postfix mail 1536 Apr 7 11:55
/var/spool/postfix/maildrop//
coral# ls -l 6F45C4D7FA
-rwx------ 1 tom staff 780 Apr 6 16:08 6F45C4D7FA*

coral# postconf mail_version
mail_version = Postfix-19990906-pl02

coral# uname -a
SunOS coral.thirdcoast.net 5.5.1 Generic_103640-24 sun4u sparc
SUNW,Ultra-2

postconf output:

2bounce_notice_recipient = postmaster
access_map_reject_code = 554
alias_database = hash:/etc/mail/aliases, hash:/home/majordomo/data/aliases
alias_maps = hash:/etc/mail/aliases, hash:/home/majordomo/data/aliases
allow_mail_to_commands = alias,forward
allow_mail_to_files = alias,forward
allow_percent_hack = yes
always_bcc =
append_at_myorigin = yes
append_dot_mydomain = yes
best_mx_transport =
biff = yes
bounce_notice_recipient = postmaster
bounce_size_limit = 50000
canonical_maps =
command_directory = $program_directory
command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
command_time_limit = 1000
daemon_directory = /opt/postfix/libexec
daemon_timeout = 18000
debug_peer_level = 2
debug_peer_list =
default_database_type = hash
default_destination_concurrency_limit = 10
default_destination_recipient_limit = 50
default_privs = nobody
default_process_limit = 50
default_transport = smtp
defer_transports =
delay_notice_recipient = postmaster
delay_warning_time = 0
deliver_lock_attempts = 5
deliver_lock_delay = 1
disable_dns_lookups = no
dont_remove = 0
double_bounce_sender = double-bounce
duplicate_filter_limit = 1000
empty_address_recipient = MAILER-DAEMON
error_notice_recipient = postmaster
expand_owner_alias = no
fallback_relay =
fallback_transport =
fork_attempts = 5
fork_delay = 1
forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
forward_path = $home/.forward${recipient_delimiter}${extension},$home/.forward
hash_queue_depth = 2
hash_queue_names = defer
header_checks =
header_size_limit = 102400
home_mailbox =
hopcount_limit = 50
ignore_mx_lookup_error = no
inet_interfaces = all
initial_destination_concurrency = 5
invalid_hostname_reject_code = 501
ipc_idle = 100
ipc_timeout = 3600
line_length_limit = 2048
local_command_shell =
local_destination_concurrency_limit = 2
local_destination_recipient_limit = $default_destination_recipient_limit
luser_relay =
mail_name = Postfix
mail_owner = postfix
mail_spool_directory = /var/mail
mail_version = Postfix-19990906-pl02
mailbox_command = /usr/sbin/procmail
mailbox_transport =
maps_rbl_domains = rbl.maps.vix.com
maps_rbl_reject_code = 554
masquerade_domains =
masquerade_exceptions = root,majordomo
max_idle = 100
max_use = 100
maximal_backoff_time = 4000
maximal_queue_lifetime = 5
message_size_limit = 10240000
minimal_backoff_time = 1000
mydestination = lists.chicago.intelenet.net
mydomain = thirdcoast.net
myhostname = coral.thirdcoast.net
mynetworks = $config_directory/mynetworks
myorigin = lists.chicago.intelenet.net
non_fqdn_reject_code = 504
notify_classes = resource,software
owner_request_special = yes
prepend_delivered_header = forward
process_id_directory = pid
program_directory = /opt/postfix/bin
propagate_unmatched_extensions = canonical, virtual
qmgr_message_active_limit = 1000
qmgr_message_recipient_limit = 10000
queue_directory = /var/spool/postfix
queue_minfree = 0
queue_run_delay = 1000
recipient_canonical_maps =
recipient_delimiter =
reject_code = 554
relay_domains = /etc/postfix/relaydomains
relay_domains_reject_code = 554
relayhost =
relocated_maps =
sender_canonical_maps = hash:/etc/postfix/canonical
service_throttle_time = 60
smtp_connect_timeout = 0
smtp_data_done_timeout = 600
smtp_data_init_timeout = 120
smtp_data_xfer_timeout = 180
smtp_destination_concurrency_limit = $default_destination_concurrency_limit
smtp_destination_recipient_limit = $default_destination_recipient_limit
smtp_helo_timeout = 300
smtp_mail_timeout = 300
smtp_quit_timeout = 300
smtp_rcpt_timeout = 300
smtp_skip_4xx_greeting = no
smtp_skip_quit_response = yes
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_restrictions =
smtpd_delay_reject = yes
smtpd_error_sleep_time = 5
smtpd_etrn_restrictions =
smtpd_hard_error_limit = 100
smtpd_helo_required = no
smtpd_helo_restrictions =
smtpd_recipient_limit = 1000
smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination, regexp:/etc/postfix/access_regexp, permit_mx_backup, reject_unauth_pipelining, check_relay_domains, reject
smtpd_sender_restrictions =
smtpd_soft_error_limit = 10
smtpd_timeout = 300
soft_bounce = no
stale_lock_time = 500
sun_mailtool_compatibility = no
swap_bangpath = yes
transport_maps =
transport_retry_time = 60
trigger_timeout = 10
unknown_address_reject_code = 450
unknown_client_reject_code = 450
unknown_hostname_reject_code = 450
virtual_maps = hash:/etc/postfix/virtual

--
matthew zeier - "Chance is irrelevant - we will succeed." - 7 of 9


Wietse Venema

unread,
Apr 8, 2000, 3:00:00 AM4/8/00
to
matthew zeier:

> Apr 7 11:56:42 coral.thirdcoast.net postfix/pickup[12826]: fatal: open
> input file maildrop/6F45C4D7FA: Permission denied

The Postfix pickup daemon runs as root, sets its UID and GID equal
to the UID and GID bits of the file, and then tries to open it.

drwx-wx--T 2 postfix mail 1536 Apr 7 11:55 /var/spool/postfix/maildrop

-rwx------ 1 tom staff 780 Apr 6 16:08 6F45C4D7FA*

Group staff should not have write permission in the maildrop
directory.

The INSTALL procedure is quite clear about this: if you use a
set-gid postdrop command, then you must use a unique group ID that
is not shared with any other user.

Wietse


0 new messages