On 01-03-2025 13:38, jcalvert--- via dovecot wrote:
Greetings,
I'm running dovecot 2.3.21.1 (Plesk says up-to-date) on AlmaLinux 8.10, Plesk
Obsidian 18.0.67 #3.
I'm getting this repeated error in /var/log/messages...
"SELinux is preventing /usr/libexec/dovecot/auth from write access on the file
passwd.db."
(I think passwd.db is the one in /var/lib/plesk/mail/auth/)
This causes...
"Activating via systemd: service name='org.fedoraproject.Setroubleshootd'"
which is taking a lot of CPU.
This error is happening continuously, about 1-3 times per minute.
Am I correct in thinking that an email client or webmail client is trying to
change an email account password via IMAP?
If so, I would like to know how to disable this ability in dovecot. (I would
like to change email account passwords only via Plesk.)
If not, why is dovecot trying to write to the passwd.db file? The fact that
SELinux is blocking this is concerning.
Hi,
Maybe the problem gets clearer when you can show the passwd
configuration in dovecot that Plesk has added.
Normally the passdb should be okay being read-only (see:
https://doc.dovecot.org/2.3/configuration_manual/authentication/sql/
where SELECT queries are used).
Password changes can't be done through IMAP iirc, but maybe the lookup
query does something weird.
Kind regards,
Tom
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
