Solved

OPENDKIM Filter reporting  KeyTable entry for 'DOMAIN' corrupt  and error loading key 'domain'

Posted on 2013-01-24
3
2,875 Views
Last Modified: 2013-01-28
Installed OPENDKIM on Centos 6 running with Sendmail.
I seem to get inthe mail logs the following error message when I attempt to send a DKIM header out. Error message in mail log :-
Jan 24 16:18:04 mail-02 opendkim[6038]: KeyTable entry for 'extsmtp003' corrupt
Jan 24 16:18:04 mail-02 opendkim[6038]: r0OGI4p4006092: error loading key 'extsmtp003'
Jan 24 16:18:04 mail-02 sendmail[6092]: r0OGI4p4006092: Milter: data, reject=451 4.3.2 Please try again later

I have re-generated the key using opendkim-genkey as required and attempted to send a mail out that matches the KeyTable file i.e. the FROM address.  I have modified the "KeyFile" to look at a simple txt file with just some random txt in and it comes up with the same error message. So I am pretty sure its not the PRIVATE key but possibly permissions.
Permission are set as  :-
-rwxrwxrwx  1 opendkim opendkim   51 Jan 24 16:16 KeyTable
drwxrwxrwx  2 opendkim opendkim 4096 Jan 24 16:02 private
-rw-r--r--  1 root     root      115 Jan 15 15:44 returnpath.php
-rwxrwxrwx  1 opendkim opendkim   25 Jan 24 14:53 SigningTable
-rwxrwxrwx  1 opendkim opendkim   75 Jan 22 13:22 TrustedHosts

Contents if the keytable are as below :-

more  Key*
extsmtp003  extsmtp003.tdc.dk:/var/db/dkim/private/extsmtp003

Appreciate if I am missing something .
Thanks
0
Comment
Question by:ccfcfc
  • 2
3 Comments
 
LVL 10

Accepted Solution

by:
ddiazp earned 500 total points
ID: 38817173
Your syntax on the KeyTable file is wrong. Should read something like:


[selector]._domainkey.tdc.dk   tdc.dk:[selector]:/var/db/dkim/private/extsmtp003


Your permissions are okay.
0
 

Author Comment

by:ccfcfc
ID: 38817876
I have changed the KeyTable to :-
[root@mail-02 dkim]# more Key*
extsmtp003._domainkey.tdc.dk  tdc.dk:extsmtp003:/var/db/dkim/private/extsmtp003.
private

Attempt to send a mail and now I get the following message in the maillog :-
signing table references unknown key 'extsmtp003'
Jan 25 09:09:56 mail-02 sendmail[19627]: r0P99usf019627: Milter: data, reject=451 4.3.2 Please try again later

Slightly different error now.
0
 
LVL 10

Expert Comment

by:ddiazp
ID: 38819496
Try replacing your KeyTable entry to:

default._domainkey.tdc.dk  tdc.dk:default:/var/db/dkim/private/extsmtp003.private


chances are you followed the guides online to the tee and used 'default' as the selector
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Tracking Bouncebacks in PHPMailer 3 63
change default ports in Postfix 1 18
exchange out of office 8 53
Spam Filter 5 65
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
As tax season makes its return, so does the increase in cyber crime and tax refund phishing that comes with it
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question