Re: postfix not resolving mDNS lookups (make it work in a LAN-without-internet)

Mon, 26 Aug 2019 08:26:53 -0700 


On 8/26/19 3:57 PM, Viktor Dukhovni wrote:
> Is smtp(8) using "chroot" in your master.cf file?  If so, the relevant
> nsswitch.conf is likely the one in the chroot jail, and the jail would
> also need to contain the relevant nss plugin modules.  Simpler may be
> to disable chroot.

That's it!!

I applied this patch (that disables chroot) and then it works [1]. Thank
you, Viktor!

With curiosity, I do not understand why the chroot of postfix is not
resolving through the nsswitch that includes and that is identical to the :

    cmp /var/spool/postfix/etc/nsswitch.conf  /etc/nsswitch.conf

(returns no output because it is equal and I see the same content)

The "relevant nss plugin modules" looks like they are there too:

 $ find /var/spool/postfix/lib | grep mdns
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns6_minimal.so.2
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns4.so.2
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns_minimal.so.2
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns6.so.2
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns4_minimal.so.2
/var/spool/postfix/lib/x86_64-linux-gnu/libnss_mdns.so.2

Cheers,
Pedro

[1] (I think is an untouched master for debian10, yes! it is in two places!)

# diff -u /etc/postfix/master.cf.orig /etc/postfix/master.cf
--- master.cf.orig    2019-08-26 16:49:09.231356916 +0200
+++ master.cf    2019-08-26 16:49:37.100024149 +0200
@@ -9,7 +9,7 @@
 # service type  private unpriv  chroot  wakeup  maxproc command + args
 #               (yes)   (yes)   (no)    (never) (100)
 #
==========================================================================
-smtp      inet  n       -       y       -       -       smtpd
+smtp      inet  n       -       n       -       -       smtpd
 #smtp      inet  n       -       y       -       1       postscreen
 #smtpd     pass  -       -       y       -       -       smtpd
 #dnsblog   unix  -       -       y       -       0       dnsblog
@@ -51,7 +51,7 @@
 flush     unix  n       -       y       1000?   0       flush
 proxymap  unix  -       -       n       -       -       proxymap
 proxywrite unix -       -       n       -       1       proxymap
-smtp      unix  -       -       y       -       -       smtp
+smtp      unix  -       -       n       -       -       smtp
 relay     unix  -       -       y       -       -       smtp
         -o syslog_name=postfix/$service_name
 #       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5

Attachment: 0xCF8ACB83E96003E3.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to