Issue is now Resolved.
Throwing this out there in case there are any other poor souls suffering from this situation.
So, the problem went away when SELinux was disabled or in PERMISSIVE mode. Leading me to believe this was an SELinux issue (duh). However, I was exceptionally confused until I read this document here:
https://wiki.gentoo.org/wiki/SELinux...Hidden_denials which specifies that it is possible for SELinux to block a thing from happening and not log it.
I disabled the 'dontaudit' statements like so:
Code:
semodule --disable_dontaudit --build
And then attempted to send a message like so:
Code:
echo "Hello" | mail -s "test subject" user@domain.com
The email message didn't in my inbox and I was greeted with the same error message in /var/log/maillog as noted in my first post.
Ok, so I check the audit.log file and find these:
Code:
[root@generic_server_name ~]# grep postdrop /var/log/audit/audit.log | grep avc
type=AVC msg=audit(1421781841.991:97817): avc: denied { rlimitinh } for pid=5272 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
type=AVC msg=audit(1421781841.991:97817): avc: denied { siginh } for pid=5272 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
type=AVC msg=audit(1421781841.991:97817): avc: denied { noatsecure } for pid=5272 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
type=AVC msg=audit(1421781842.049:97819): avc: denied { rlimitinh } for pid=5274 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
type=AVC msg=audit(1421781842.049:97819): avc: denied { siginh } for pid=5274 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
type=AVC msg=audit(1421781842.049:97819): avc: denied { noatsecure } for pid=5274 comm="postdrop" scontext=system_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tclass=process
[root@generic_server_name ~]#
Then, the way forward became clear:
I used the audit2allow command:
Code:
grep postdrop /var/log/audit/audit.log | grep avc | audit2allow -M postfix_fix.pp
And inserted the SELinux module that was created:
Code:
semodule -i postfix_fix.pp
The issue is resolved.