From 63dbc331a1f7bb4c35fcb05d8cbd5bc24272cbeb Mon Sep 17 00:00:00 2001
From: xavor <xavor@hotmail.es>
Date: Wed, 20 May 2026 21:32:35 +0000
Subject: [PATCH] fix Postfix spool permissions using set-permissions

Manual chmod 1730 on maildrop caused postsuper scan_dir_push failures
because the group (postdrop) lacked read permission. Let Postfix set
the exact permissions it expects via set-permissions.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
---
 entrypoint.sh | 13 ++-----------
 1 file changed, 2 insertions(+), 11 deletions(-)

diff --git a/entrypoint.sh b/entrypoint.sh
index 9dea1ab..4c8dc0b 100644
--- a/entrypoint.sh
+++ b/entrypoint.sh
@@ -18,17 +18,8 @@ echo "${RELAY_AUTH_PASS}" | saslpasswd2 -p -c -u "${RELAY_AUTH_DOMAIN}" "${RELAY
 chown root:sasl /etc/sasldb2 2>/dev/null || true
 chmod 640 /etc/sasldb2 2>/dev/null || true
 
-# Postfix spool directories (required inside container)
+# Postfix spool and state directories (required inside container)
 mkdir -p /var/spool/postfix /var/lib/postfix
-chown root:root /var/spool/postfix
-chmod 755 /var/spool/postfix
-
-mkdir -p /var/spool/postfix/public /var/spool/postfix/maildrop
-chown root:postdrop /var/spool/postfix/public /var/spool/postfix/maildrop
-chmod 1730 /var/spool/postfix/public /var/spool/postfix/maildrop
-
-mkdir -p /var/spool/postfix/pid
-chown root:root /var/spool/postfix/pid
-chmod 755 /var/spool/postfix/pid
+postfix set-permissions 2>/dev/null || true
 
 exec postfix start-fg