HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   Installation/Configuration (http://www.howtoforge.com/forums/forumdisplay.php?f=4)
-   -   dk-filter / sendmail / centos ALMOST working but broken pipe to socket? Please help (http://www.howtoforge.com/forums/showthread.php?t=33307)

kinesis 5th April 2009 22:16

dk-filter / sendmail / centos ALMOST working but broken pipe to socket? Please help
 
I followed directions and i almost have dk-filter operational on a centos machine :)

Heres the problem though
I start the dk-filter through a custom startup script as shown here:

[root@lunar ~]# service domainkeys start
Starting dk-filter: [ OK ]
[root@lunar ~]#


This is what I get in sendmail maillog (most signifigant error shown in bold):

Apr 5 13:12:59 lunar dk-filter[22204]: Sendmail DomainKeys Filter v1.0.2 starting (args: -l -p inet:8891@localhost -c simple -d nuper.com
-s /var/db/domainkeys/mail.key.pem -S mail -u dkim -M MSA)
--- email sent here ---
fujinet.net>, proto=SMTP, daemon=MTA, relay=ip-77.net-89-2-209.rev.numericable.fr [89.2.209.77]
Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): write(L) returned -1, expected 47: Broken pipe
Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): to error state



This is what I have added to sendmail.mc and recompiled:

[root@lunar mail]# cat sendmail.mc|grep dk-filter
INPUT_MAIL_FILTER(`dk-filter', `S=inet:8891@localhost')dnl
[root@lunar mail]#



Any information on how to solve the elusive "Broken pipe" error is appreciated. I also had this error using it as a unix: sock in /var/run/dk-filter/dk.sock and as a local: sock on both the dk-filter side and the sendmail.mc side.. Nothing works, broken pipe every time. Thanks

PS This is dk-milter-1.0.2.tar.gz downloaded off of Sourceforge.

I thought this was perhaps a software problem, maybe a bug in the dk-filter program

So I tried dk-milter-1.0.1.tar.gz from late 2008

Same problem!

topdog 6th April 2009 17:50

can the user dkim read the file /var/db/domainkeys/mail.key.pem ?

kinesis 6th April 2009 18:26

that may have been the issue, i got it to work but heres my problem now:

From root@lunar Mon Apr 6 00:54:34 2009
Return-Path: <root@lunar>
Received: from lunar (lunar [127.0.0.1])
by lunar.nuper.com (8.13.1/8.13.1) with ESMTP id n367sYYP027305
for <k@lunar>; Mon, 6 Apr 2009 00:54:34 -0700
X-DomainKeys: Sendmail DomainKeys Filter v1.0.2 lunar n367sYYP027305
Received: (from root@localhost)
by lunar.nuper.com (8.13.1/8.13.1/Submit) id n367sY2O027304
for k@Localhost; Mon, 6 Apr 2009 00:54:34 -0700
Date: Mon, 6 Apr 2009 00:54:34 -0700
From: root <root@lunar>
Message-Id: <200904060754.n367sY2O027304@lunar>
To: k@lunar
X-Spam-Status: No, score=2.7 required=5.0 tests=ALL_TRUSTED,MISSING_SUBJECT,
TVD_SPACE_RATIO autolearn=no version=3.2.4
X-Spam-Level: **
X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on lunar

hi


my understanding is that im suppose to see a digital encryption key? all i see is version string appended. heres the flags im starting it with:
/usr/bin/dk-filter -u dkim -P /var/run/dk-filter/dk-filter.pid -p /var/run/dk-filter/dk-filter.sock -R -l -b sv -c nofws \
-h -H -i /etc/mail/local-host-names -s /etc/mail/domainkeys/mail.key.pem


i want it to digitally sign my emails not just append a version header.. i also only want it done to OUTGOING emails, not incoming

topdog 6th April 2009 20:09

The email is not from an address within the signing domain so dk-filter will not sign the email. your from address is root@localhost

kinesis 6th April 2009 20:54

i'm proud to say i not only got it working, but i got a pass on the dkim test site
thanks all for your help!!! i am partying my ass off now this is the biggest accomplishment ever in my career as a sysadmin!


All times are GMT +2. The time now is 16:27.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.