Okay, thanks to all. I moved the milter sockets away from the private/ folder to var/run/<milter>/<milter>.sock, and everything works now with the correct permissions after "postfix set-permissions".
Robert Am Dienstag, den 18.08.2015, 13:41 +0200 schrieb Robert Senger: > Hi all, > > I just upgraded a server from Debian Wheezy to Jessie, and moved the > system partition to a new, bigger harddisk. Now I am having trouble with > the permissions of the /var/spool/postfix/private folder. > > As far as I can see all folder permissions throughout the whole system > are the same as before on the old harddisk, including postfix's private > directory. > > Despite this fact, all milter services that create/use sockets within > the /var/spool/postfix/private folder (OpenDKIM, OpenDMARC, postgrey, > SPF) refuse to start, complaining they cannot create/write their socket > in the private folder. > > I already checked all the folder permissions, ran "postfix > set-permissions" and "postfix check", without success. > > To get the milters working, I need to set the private folders's > permissions to 777, which is certainly not what we want for a private > folder... > > Running "postfix set-permissions" resets the permissions to 700, but > then the milters fail. > > Any idea what can be wrong here? Thanks! > > Cheers, > > Robert > > -- Robert Senger
