Date: Sun, 29 Jun 2008 20:43:03 +0530 From: wahjava.ml@gmail.com (Ashish Shukla =?utf-8?B?4KSG4KS24KWA4KS3IA==?= =?utf-8?B?4KS24KWB4KSV4KWN4KSy?=) To: nightrecon@verizon.net Cc: freebsd-questions@freebsd.org Subject: Re: Postfix logging some OTP related permission denied messages Message-ID: <868wwo6zr4.fsf@chateau.d.lf> In-Reply-To: <g483nu$rur$1@ger.gmane.org> (Michael Powell's message of "Sun, 29 Jun 2008 09:48:19 -0400") References: <20080629105019.GA2003@chateau.d.lf> <g483nu$rur$1@ger.gmane.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable ,--- Michael Powell writes: | =E0=A4=86=E0=A4=B6=E0=A5=80=E0=A4=B7 =E0=A4=B6=E0=A5=81=E0=A4=95=E0=A5=8D= =E0=A4=B2 Ashish Shukla wrote: || Hi, ||=20 || I'm running 7.0-RELEASE-p2 (amd64). I'm running Postfix 2.5.1_2,1 mail || server instead of the default Sendmail which ships with base distributio= n. ||=20 || My mail server is working fine with no issues except that I noticed that || some messages in /var/log/messages: ||=20 =2D---| 8---->8---- || Jun 29 03:12:45 chateau postfix/smtpd[1159]: OTP unavailable because can= 't || read/write key database /etc/opiekeys: Permission denied Jun 29 03:18:22 || chateau postfix/smtpd[1535]: OTP unavailable because can't read/write key || database /etc/opiekeys: Permission denied Jun 29 03:23:55 chateau || postfix/smtpd[1873]: OTP unavailable because can't read/write key databa= se || /etc/opiekeys: Permission denied Jun 29 04:18:25 chateau || postfix/smtpd[78118]: OTP unavailable because can't read/write key || database /etc/opiekeys: Permission denied Jun 29 16:07:11 chateau || postfix/smtpd[1712]: OTP unavailable because can't read/write key databa= se || /etc/opiekeys: Permission denied Jun 29 16:07:17 chateau || postfix/smtpd[1712]: OTP unavailable because can't read/write key databa= se || /etc/opiekeys: Permission denied Jun 29 16:13:30 chateau || postfix/smtpd[2125]: OTP unavailable because can't read/write key databa= se || /etc/opiekeys: Permission denied ----8<----8<---- ||=20 || I've not done anything explicitly to turn on support for One-time || passwords in my system. ||=20 || Any ideas, reasons behind these messages ? ||=20 || TIA | Greetings: | I've seen some suggestions which involve making changes for allowing the | access to the files, but my thoughts are if you are not making use of this | feature this would be tantamount to a small form of security violation. | The shortcut is probably just to give the group 'mail' rw permissions to | opiekeys and don't overly muck with a config that works correctly. | If when you installed Postfix it installed cyrus-sasl as a dependency you | might try going into /usr/ports/security/cyrus-sasl2 and doing make config | and clearing the checkbox option near the bottom "OTP Enable OTP auth", | then make deinstall, and make reinstall. Reinstall cyrus-sasl2 without OTP support worked, and now no more OTP related messages. | -Mike Thanks :) =2D-=20 =C2=B7-- =C2=B7- =C2=B7=C2=B7=C2=B7=C2=B7 =C2=B7--- =C2=B7- =C2=B7=C2=B7=C2= =B7- =C2=B7- =C2=B7--=C2=B7-=C2=B7 --=C2=B7 -- =C2=B7- =C2=B7=C2=B7 =C2=B7-= =C2=B7=C2=B7 =C2=B7-=C2=B7-=C2=B7- -=C2=B7-=C2=B7 --- -- --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkhnpn8ACgkQHy+EEHYuXnQtmgCeLZWoeuKL+yjkxOgL3BBwNKq3 nwsAnix5Ro4qvyIV5pZVB5B+DykuIDiZ =51/8 -----END PGP SIGNATURE----- --=-=-=--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?868wwo6zr4.fsf>