dk-filter / sendmail / centos ALMOST working but broken pipe to socket? Please help

Discussion in 'Installation/Configuration' started by kinesis, Apr 5, 2009.

  1. kinesis

    kinesis New Member

    I followed directions and i almost have dk-filter operational on a centos machine :)

    Heres the problem though
    I start the dk-filter through a custom startup script as shown here:

    [[email protected] ~]# service domainkeys start
    Starting dk-filter: [ OK ]
    [[email protected] ~]#

    This is what I get in sendmail maillog (most signifigant error shown in bold):

    Apr 5 13:12:59 lunar dk-filter[22204]: Sendmail DomainKeys Filter v1.0.2 starting (args: -l -p inet:[email protected] -c simple -d
    -s /var/db/domainkeys/mail.key.pem -S mail -u dkim -M MSA)
    --- email sent here --->, proto=SMTP, daemon=MTA, []
    Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): write(L) returned -1, expected 47: Broken pipe
    Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): to error state

    This is what I have added to and recompiled:

    [[email protected] mail]# cat|grep dk-filter
    INPUT_MAIL_FILTER(`dk-filter', `S=inet:[email protected]')dnl
    [[email protected] mail]#

    Any information on how to solve the elusive "Broken pipe" error is appreciated. I also had this error using it as a unix: sock in /var/run/dk-filter/dk.sock and as a local: sock on both the dk-filter side and the side.. Nothing works, broken pipe every time. Thanks

    PS This is dk-milter-1.0.2.tar.gz downloaded off of Sourceforge.

    I thought this was perhaps a software problem, maybe a bug in the dk-filter program

    So I tried dk-milter-1.0.1.tar.gz from late 2008

    Same problem!
    Last edited: Apr 6, 2009
  2. topdog

    topdog Active Member

    can the user dkim read the file /var/db/domainkeys/mail.key.pem ?
  3. kinesis

    kinesis New Member

    that may have been the issue, i got it to work but heres my problem now:

    From [email protected] Mon Apr 6 00:54:34 2009
    Return-Path: <[email protected]>
    Received: from lunar (lunar [])
    by (8.13.1/8.13.1) with ESMTP id n367sYYP027305
    for <[email protected]>; Mon, 6 Apr 2009 00:54:34 -0700
    X-DomainKeys: Sendmail DomainKeys Filter v1.0.2 lunar n367sYYP027305
    Received: (from [email protected])
    by (8.13.1/8.13.1/Submit) id n367sY2O027304
    for [email protected]; Mon, 6 Apr 2009 00:54:34 -0700
    Date: Mon, 6 Apr 2009 00:54:34 -0700
    From: root <[email protected]>
    Message-Id: <[email protected]>
    To: [email protected]
    X-Spam-Status: No, score=2.7 required=5.0 tests=ALL_TRUSTED,MISSING_SUBJECT,
    TVD_SPACE_RATIO autolearn=no version=3.2.4
    X-Spam-Level: **
    X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on lunar


    my understanding is that im suppose to see a digital encryption key? all i see is version string appended. heres the flags im starting it with:
    /usr/bin/dk-filter -u dkim -P /var/run/dk-filter/ -p /var/run/dk-filter/dk-filter.sock -R -l -b sv -c nofws \
    -h -H -i /etc/mail/local-host-names -s /etc/mail/domainkeys/mail.key.pem

    i want it to digitally sign my emails not just append a version header.. i also only want it done to OUTGOING emails, not incoming
    Last edited: Apr 6, 2009
  4. topdog

    topdog Active Member

    The email is not from an address within the signing domain so dk-filter will not sign the email. your from address is [email protected]
  5. kinesis

    kinesis New Member

    i'm proud to say i not only got it working, but i got a pass on the dkim test site
    thanks all for your help!!! i am partying my ass off now this is the biggest accomplishment ever in my career as a sysadmin!
    Last edited: Apr 6, 2009

Share This Page