-----BEGIN PGP SIGNED MESSAGE-----
Chris Adams wrote:
I'm trying to set up dovecot for IMAP. I'm using an external
program and a static userdb setting to define the home directories (all
owned by the same UID/GID). I set the whole directory tree to
mail_spool_t (thinking I'd avoid any SELinux access issues that way).
What is odd is that it fails when SELinux is in enforcing mode, but not
in permissive, BUT I don't get any errors when it fails (e.g. no
"denied" messages in the kernel or audit logs).
I've straced the daemon, and it fails at a chdir(). I know the
permissions are okay (it works when the system is in permissive mode),
so I figured it has to be related to SELinux, but I can't figure out
will turn on all dontaudit rules.
Try your test.
will turn rules back on.
Check for AVC messages.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----