I've been trying to reproduce this. I installed libcap2-bin, added an entry for 'serge' to get cap_dac_override to /etc/security/capabilities.conf, verified through strace that ssh was causing capabilities.conf to be read. Installed courier-imap-ssl. Then continued to do both 'ssh localhost -l serge' and, as user serge, 'mutt -f imap://serge@localhost'. But while mutt failed to open my Maildir (bc it did not exist), I saw no complaints from login.
Can you tell me what 'grep pam_cap /etc/pam.d/*' gives you? What is in your /etc/security/capability.conf? Is there anything else which you can see I should be doing to reproduce this?
Hi,
I've been trying to reproduce this. I installed libcap2-bin, added an entry for 'serge' to get cap_dac_override to /etc/security/ capabilities. conf, verified through strace that ssh was causing capabilities.conf to be read. Installed courier-imap-ssl. Then continued to do both 'ssh localhost -l serge' and, as user serge, 'mutt -f imap:// serge@localhost '. But while mutt failed to open my Maildir (bc it did not exist), I saw no complaints from login.
Can you tell me what 'grep pam_cap /etc/pam.d/*' gives you? What is in your /etc/security/ capability. conf? Is there anything else which you can see I should be doing to reproduce this?