Ken Wright:
> On Sun, 2022-01-02 at 21:59 -0500, Wietse Venema wrote:
> > Ken Wright:
> > > On Sun, 2022-01-02 at 19:40 -0500, Wietse Venema wrote:
> > > > Sorry, I mis-typed 'postqueue'.
> > > >
> > > > Try this instead.
> > > >
> > > > Here is what happens on my system.
> > > >
> > > > As root:
> > > >
> > > > # chmod g-s /usr/sbin/postqueue
> > > > # ls -l /usr/sbin/postqueue
> > > > -rwxr-xr-x 1 root postdrop 60072 Dec 23 18:08 /usr/sbin/postqueue
> > >
> > > I got:
> > >
> > > -r-xr-xr-x 1 root postdrop 22760 Sep? 7 02:58 /usr/sbin/postqueue
> > >
> > > > # chmod 777 /var/spool/postfix/public
> > > > # ls -ld /var/spool/postfix/public /var/spool/postfix/public/showq
> > > > drwxrwxrwx. 2 postfix postdrop 4096 Jan? 2 18:30
> > > > /var/spool/postfix/public
> > > > srw-rw-rw-? 1 postfix postfix???? 0 Jan? 2 18:30
> > > > /var/spool/postfix/public/showq
> > >
> > > drwxrwsrwx 2 postfix postdrop 88 Jan? 2 17:46
> > > /var/spool/postfix/public
> > > srw-rw-rw- 1 postfix postdrop? 0 Jan? 2 17:46
> > > /var/spool/postfix/public/showq
> > >
> > > > # su wietse
> > > >
> > > > As non-root:
> > > >
> > > > wzv$ strace -e connect postqueue -p |& grep showq
> >
> > TYPE THE COMMAND "strace -e connect postqueue -p |& grep showq"
> >
> > > > connect(4, {sa_family=AF_UNIX, sun_path="public/showq"}, 110) = 0
> >
> > THAT WAS THE EXPECTED COMMAND OUTPUT.
> >
> And I got:
>
> connect(4, {sa_family=AF_UNIX, sun_path="public/showq"}, 110) = -1
> EACCES (Permission denied)
> postqueue: fatal: Connect to the Postfix showq service: Permission
> denied
You disabled apparmor, postqueue is not setgid, the
/var/spool/postifx/public directory is mode 777, and the showq
socket is mode 666. Yet connect fails with EACCES.
That does not make any sense.
Wietse
