Solved

OPENDKIM Filter reporting  KeyTable entry for 'DOMAIN' corrupt  and error loading key 'domain'

Posted on 2013-01-24
3
2,911 Views
Last Modified: 2013-01-28
Installed OPENDKIM on Centos 6 running with Sendmail.
I seem to get inthe mail logs the following error message when I attempt to send a DKIM header out. Error message in mail log :-
Jan 24 16:18:04 mail-02 opendkim[6038]: KeyTable entry for 'extsmtp003' corrupt
Jan 24 16:18:04 mail-02 opendkim[6038]: r0OGI4p4006092: error loading key 'extsmtp003'
Jan 24 16:18:04 mail-02 sendmail[6092]: r0OGI4p4006092: Milter: data, reject=451 4.3.2 Please try again later

I have re-generated the key using opendkim-genkey as required and attempted to send a mail out that matches the KeyTable file i.e. the FROM address.  I have modified the "KeyFile" to look at a simple txt file with just some random txt in and it comes up with the same error message. So I am pretty sure its not the PRIVATE key but possibly permissions.
Permission are set as  :-
-rwxrwxrwx  1 opendkim opendkim   51 Jan 24 16:16 KeyTable
drwxrwxrwx  2 opendkim opendkim 4096 Jan 24 16:02 private
-rw-r--r--  1 root     root      115 Jan 15 15:44 returnpath.php
-rwxrwxrwx  1 opendkim opendkim   25 Jan 24 14:53 SigningTable
-rwxrwxrwx  1 opendkim opendkim   75 Jan 22 13:22 TrustedHosts

Contents if the keytable are as below :-

more  Key*
extsmtp003  extsmtp003.tdc.dk:/var/db/dkim/private/extsmtp003

Appreciate if I am missing something .
Thanks
0
Comment
Question by:ccfcfc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 10

Accepted Solution

by:
ddiazp earned 500 total points
ID: 38817173
Your syntax on the KeyTable file is wrong. Should read something like:


[selector]._domainkey.tdc.dk   tdc.dk:[selector]:/var/db/dkim/private/extsmtp003


Your permissions are okay.
0
 

Author Comment

by:ccfcfc
ID: 38817876
I have changed the KeyTable to :-
[root@mail-02 dkim]# more Key*
extsmtp003._domainkey.tdc.dk  tdc.dk:extsmtp003:/var/db/dkim/private/extsmtp003.
private

Attempt to send a mail and now I get the following message in the maillog :-
signing table references unknown key 'extsmtp003'
Jan 25 09:09:56 mail-02 sendmail[19627]: r0P99usf019627: Milter: data, reject=451 4.3.2 Please try again later

Slightly different error now.
0
 
LVL 10

Expert Comment

by:ddiazp
ID: 38819496
Try replacing your KeyTable entry to:

default._domainkey.tdc.dk  tdc.dk:default:/var/db/dkim/private/extsmtp003.private


chances are you followed the guides online to the tee and used 'default' as the selector
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Import PST to Exchange using Power Shell new-mailboximportrequest command, you can simply import the PST file into Exchange mailbox or archived. To know How to import PST into Exchange  2013 read the complete article.
Resolve DNS query failed errors for Exchange
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question