Solved

OPENDKIM Filter reporting  KeyTable entry for 'DOMAIN' corrupt  and error loading key 'domain'

Posted on 2013-01-24
3
2,729 Views
Last Modified: 2013-01-28
Installed OPENDKIM on Centos 6 running with Sendmail.
I seem to get inthe mail logs the following error message when I attempt to send a DKIM header out. Error message in mail log :-
Jan 24 16:18:04 mail-02 opendkim[6038]: KeyTable entry for 'extsmtp003' corrupt
Jan 24 16:18:04 mail-02 opendkim[6038]: r0OGI4p4006092: error loading key 'extsmtp003'
Jan 24 16:18:04 mail-02 sendmail[6092]: r0OGI4p4006092: Milter: data, reject=451 4.3.2 Please try again later

I have re-generated the key using opendkim-genkey as required and attempted to send a mail out that matches the KeyTable file i.e. the FROM address.  I have modified the "KeyFile" to look at a simple txt file with just some random txt in and it comes up with the same error message. So I am pretty sure its not the PRIVATE key but possibly permissions.
Permission are set as  :-
-rwxrwxrwx  1 opendkim opendkim   51 Jan 24 16:16 KeyTable
drwxrwxrwx  2 opendkim opendkim 4096 Jan 24 16:02 private
-rw-r--r--  1 root     root      115 Jan 15 15:44 returnpath.php
-rwxrwxrwx  1 opendkim opendkim   25 Jan 24 14:53 SigningTable
-rwxrwxrwx  1 opendkim opendkim   75 Jan 22 13:22 TrustedHosts

Contents if the keytable are as below :-

more  Key*
extsmtp003  extsmtp003.tdc.dk:/var/db/dkim/private/extsmtp003

Appreciate if I am missing something .
Thanks
0
Comment
Question by:ccfcfc
  • 2
3 Comments
 
LVL 10

Accepted Solution

by:
ddiazp earned 500 total points
Comment Utility
Your syntax on the KeyTable file is wrong. Should read something like:


[selector]._domainkey.tdc.dk   tdc.dk:[selector]:/var/db/dkim/private/extsmtp003


Your permissions are okay.
0
 

Author Comment

by:ccfcfc
Comment Utility
I have changed the KeyTable to :-
[root@mail-02 dkim]# more Key*
extsmtp003._domainkey.tdc.dk  tdc.dk:extsmtp003:/var/db/dkim/private/extsmtp003.
private

Attempt to send a mail and now I get the following message in the maillog :-
signing table references unknown key 'extsmtp003'
Jan 25 09:09:56 mail-02 sendmail[19627]: r0P99usf019627: Milter: data, reject=451 4.3.2 Please try again later

Slightly different error now.
0
 
LVL 10

Expert Comment

by:ddiazp
Comment Utility
Try replacing your KeyTable entry to:

default._domainkey.tdc.dk  tdc.dk:default:/var/db/dkim/private/extsmtp003.private


chances are you followed the guides online to the tee and used 'default' as the selector
0

Featured Post

Want to promote your upcoming event?

Are you going to an event? Are you going to be exhibiting at a tradeshow? Talking at a conference? Using a promotional banner in your email signature ensures that your organization’s most important contacts stay in the know and can potentially spread the word about the event.

Join & Write a Comment

Suggested Solutions

The purpose of this article is to fix the unknown display problem in Linux Mint operating system. After installing the OS if you see Display monitor is not recognized then we can install "MESA" utilities to fix this problem or we can install additio…
Resolve DNS query failed errors for Exchange
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now