From owner-freebsd-questions@FreeBSD.ORG  Sun Jun 29 15:12:36 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 26843106568F
	for <freebsd-questions@freebsd.org>;
	Sun, 29 Jun 2008 15:12:36 +0000 (UTC)
	(envelope-from wahjava@gmail.com)
Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.182])
	by mx1.freebsd.org (Postfix) with ESMTP id D19448FC0C
	for <freebsd-questions@freebsd.org>;
	Sun, 29 Jun 2008 15:12:35 +0000 (UTC)
	(envelope-from wahjava@gmail.com)
Received: by wa-out-1112.google.com with SMTP id j4so820965wah.3
	for <freebsd-questions@freebsd.org>;
	Sun, 29 Jun 2008 08:12:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:received:from:to:cc:subject
	:organization:references:x-face:x-pgp-fp:x-pgp:x-mailer
	:x-attribution:pgp:date:in-reply-to:message-id:user-agent:face
	:mime-version:content-type:sender;
	bh=2ZR4IdAxrpFiX/8yUmTUOODvQ0sSUH07wZgCfuRVADM=;
	b=FhlCn60iwBeHiB2nLup8CWvaaFsk0/X91IWGrl9/wyCG0Wmv0IMa1dEFCbasYmQsYt
	NKedHWqw7qhlDfca5W+VqMagZbM7eFs2BkShA7mSCjG2xFbuVKgfUvT8w0iijAmUqGBH
	+zBJJJ/dvv0taPcnwOKMXKzpRWMl7iV3hscT8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=from:to:cc:subject:organization:references:x-face:x-pgp-fp:x-pgp
	:x-mailer:x-attribution:pgp:date:in-reply-to:message-id:user-agent
	:face:mime-version:content-type:sender;
	b=FudDpMJkDfw9Ss/+ozLSdb7tARTL4kJlkTDtn5R4ysnchuTWrD9IxtEzSjHvag00or
	XajBnnhqM/auxFSY/9u3KNAcRqcC1EJOnDhgvaF8+v3VttjSpZkoQEaAT83ioM6wBVO4
	/ZEyIAdLUhdw5hhkNiSn35dIua6Hl9FtG5x6g=
Received: by 10.114.195.19 with SMTP id s19mr3167051waf.110.1214752355507;
	Sun, 29 Jun 2008 08:12:35 -0700 (PDT)
Received: from chateau.d.lf ( [122.162.237.98])
	by mx.google.com with ESMTPS id m10sm5919301waf.59.2008.06.29.08.12.32
	(version=TLSv1/SSLv3 cipher=RC4-MD5);
	Sun, 29 Jun 2008 08:12:34 -0700 (PDT)
From: wahjava.ml@gmail.com (Ashish Shukla =?utf-8?B?4KSG4KS24KWA4KS3IA==?=
	=?utf-8?B?4KS24KWB4KSV4KWN4KSy?=)
To: nightrecon@verizon.net
Organization: The Church of Emacs
References: <20080629105019.GA2003@chateau.d.lf> <g483nu$rur$1@ger.gmane.org>
X-Face: "\:nMpJ)EA!j>2nEu-[(+&o:N+CtL^AS\,
	Jv*LO5qBr#<yoEpzwDOG')|dK2%L=w&PVuka|?`v)/*U]<M2.W)'?%0up@+?.3j>W2.\=d<t/KNom9hK"'(_%-Q60Xs2|D(Z+WH+tf!f)!#38x#Td@8=c/37*6fVl~JApaXmBy^2Q=BS0bL/
X-PGP-FP: 1E00 4679 77E4 F8EE 2E4B 56F2 1F2F 8410 762E 5E74
X-PGP: 762E5E74
X-Mailer: Gnus/5.13 (Oort 5.13) Emacs/23.0.60.2 (x86_64-pc-freebsd)
X-Attribution: =?utf-8?B?4KSG4KS24KWA4KS3?=
PGP: 762E5E74
Date: Sun, 29 Jun 2008 20:43:03 +0530
In-Reply-To: <g483nu$rur$1@ger.gmane.org> (Michael Powell's message of "Sun,
	29 Jun 2008 09:48:19 -0400")
Message-ID: <868wwo6zr4.fsf@chateau.d.lf>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.0.60 (berkeley-unix)
Face: iVBORw0KGgoAAAANSUhEUgAAADAAAAAwBAMAAAClLOS0AAAAJFBMVEVfX1/8/PwTExMDAwO0
	tLSampr////f398oKCi/v78MDAwICAihq32EAAACU0lEQVQ4jW3UvWvbQBQA8LOJsJIsOajtZAtH
	Aqq8FLQUvNjhCex2UYpE7XYytPJalxJnFMImqrOkIJfcZtwGgrqEhELQ/XN9p+jLbc+Drfvx7r17
	9jNxszXCV2mR9P3ACoKAOM5bugn1hRBRFAnxeErLMN4RIpbwYKwmZfgkMGDNol8PhlFrFDDalQcx
	BMMwXpwV8KElYqYzpmOA0a4UsC/EmrEU4ptGDq9kghTabP09g9EuFiSpJQOYXslgrEd6Aj8Q7pl+
	kcFH3NRlUTIFfvyZwV4sEzwV20a4y2A/BWEYLxdYwk0Gn+Mohfa2X4bXsn8StC0uYdVI4T02cK0F
	is15ArcZYKeER5Q+f4JofZZHiPshJPt8BwtPrp4kF+KOp+sdpjvOjqpf3n+1bD6dTjk3ySKuZVU1
	ezcdpm3h/pL4h9eP3Rw6R5bqa9t86a/1W3OVd7dpzgBMx8YAxVFgvgmqDTwEdQignOVgI1ggoQMA
	x40CFHzmCHgXcEoAig39MOSATTGt5znQL4qDIRIgNK2LAqYWAl47lBGDSgHNjoOt6vdDkNAtQc9E
	wN0EJgXQN7aMSABIGU7mMiI5CtQJzX9w9PwQYOApVqBwCMqwp9lmkKzh0qM5uPTAn/Vw0ogazK9m
	JRjR6pHqEVyqd1XbgPPfKkgAddClxRi49NmKcNMh+JV4T7mzqW1e2jwk3pAPjugGuCfHPLRIP/Qr
	tLEB9daW7HrvcLIx55i/9zjkfMlO//pnwLHyPcupzrL9AtxrFgTaN/dfGFcjreb+B9wmnzaKpz8p
	dKsBFjzeRQAAAABJRU5ErkJggg==
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
	micalg=pgp-sha1; protocol="application/pgp-signature"
Sender: =?UTF-8?B?4KSG4KS24KWA4KS3IOCktuClgeCkleCljeCksiBBc2hpc2ggU2h1a2xh?=
	<wahjava@gmail.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: Postfix logging some OTP related permission denied messages
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Jun 2008 15:12:36 -0000

--=-=-=
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

,--- Michael Powell writes:
| =E0=A4=86=E0=A4=B6=E0=A5=80=E0=A4=B7 =E0=A4=B6=E0=A5=81=E0=A4=95=E0=A5=8D=
=E0=A4=B2 Ashish Shukla wrote:

|| Hi,
||=20
|| I'm running 7.0-RELEASE-p2 (amd64). I'm running Postfix 2.5.1_2,1 mail
|| server instead of the default Sendmail which ships with base distributio=
n.
||=20
|| My mail server is working fine with no issues except that I noticed that
|| some messages in /var/log/messages:
||=20
=2D---| 8---->8----
|| Jun 29 03:12:45 chateau postfix/smtpd[1159]: OTP unavailable because can=
't
|| read/write key database /etc/opiekeys: Permission denied Jun 29 03:18:22
|| chateau postfix/smtpd[1535]: OTP unavailable because can't read/write key
|| database /etc/opiekeys: Permission denied Jun 29 03:23:55 chateau
|| postfix/smtpd[1873]: OTP unavailable because can't read/write key databa=
se
|| /etc/opiekeys: Permission denied Jun 29 04:18:25 chateau
|| postfix/smtpd[78118]: OTP unavailable because can't read/write key
|| database /etc/opiekeys: Permission denied Jun 29 16:07:11 chateau
|| postfix/smtpd[1712]: OTP unavailable because can't read/write key databa=
se
|| /etc/opiekeys: Permission denied Jun 29 16:07:17 chateau
|| postfix/smtpd[1712]: OTP unavailable because can't read/write key databa=
se
|| /etc/opiekeys: Permission denied Jun 29 16:13:30 chateau
|| postfix/smtpd[2125]: OTP unavailable because can't read/write key databa=
se
|| /etc/opiekeys: Permission denied ----8<----8<----
||=20
|| I've not done anything explicitly to turn on support for One-time
|| passwords in my system.
||=20
|| Any ideas, reasons behind these messages ?
||=20
|| TIA

| Greetings:

| I've seen some suggestions which involve making changes for allowing the
| access to the files, but my thoughts are if you are not making use of this
| feature this would be tantamount to a small form of security violation.

| The shortcut is probably just to give the group 'mail' rw permissions to
| opiekeys and don't overly muck with a config that works correctly.

| If when you installed Postfix it installed cyrus-sasl as a dependency you
| might try going into /usr/ports/security/cyrus-sasl2 and doing make config
| and clearing the checkbox option near the bottom "OTP Enable OTP auth",
| then make deinstall, and make reinstall.

Reinstall cyrus-sasl2 without OTP support worked, and now no more OTP
related messages.

| -Mike

Thanks :)
=2D-=20
=C2=B7-- =C2=B7- =C2=B7=C2=B7=C2=B7=C2=B7 =C2=B7--- =C2=B7- =C2=B7=C2=B7=C2=
=B7- =C2=B7- =C2=B7--=C2=B7-=C2=B7 --=C2=B7 -- =C2=B7- =C2=B7=C2=B7 =C2=B7-=
=C2=B7=C2=B7 =C2=B7-=C2=B7-=C2=B7- -=C2=B7-=C2=B7 --- --

--=-=-=
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (FreeBSD)

iEYEARECAAYFAkhnpn8ACgkQHy+EEHYuXnQtmgCeLZWoeuKL+yjkxOgL3BBwNKq3
nwsAnix5Ro4qvyIV5pZVB5B+DykuIDiZ
=51/8
-----END PGP SIGNATURE-----
--=-=-=--