dk-filter / sendmail / centos ALMOST working but broken pipe to socket? Please help

Discussion in 'Installation/Configuration' started by kinesis, Apr 5, 2009.

  1. kinesis

    kinesis New Member

    I followed directions and i almost have dk-filter operational on a centos machine :)

    Heres the problem though
    I start the dk-filter through a custom startup script as shown here:

    [root@lunar ~]# service domainkeys start
    Starting dk-filter: [ OK ]
    [root@lunar ~]#


    This is what I get in sendmail maillog (most signifigant error shown in bold):

    Apr 5 13:12:59 lunar dk-filter[22204]: Sendmail DomainKeys Filter v1.0.2 starting (args: -l -p inet:8891@localhost -c simple -d nuper.com
    -s /var/db/domainkeys/mail.key.pem -S mail -u dkim -M MSA)
    --- email sent here ---
    fujinet.net>, proto=SMTP, daemon=MTA, relay=ip-77.net-89-2-209.rev.numericable.fr [89.2.209.77]
    Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): write(L) returned -1, expected 47: Broken pipe
    Apr 5 13:13:21 lunar sendmail[22167]: n35KCRU2022167: Milter (dk-filter): to error state



    This is what I have added to sendmail.mc and recompiled:

    [root@lunar mail]# cat sendmail.mc|grep dk-filter
    INPUT_MAIL_FILTER(`dk-filter', `S=inet:8891@localhost')dnl
    [root@lunar mail]#



    Any information on how to solve the elusive "Broken pipe" error is appreciated. I also had this error using it as a unix: sock in /var/run/dk-filter/dk.sock and as a local: sock on both the dk-filter side and the sendmail.mc side.. Nothing works, broken pipe every time. Thanks

    PS This is dk-milter-1.0.2.tar.gz downloaded off of Sourceforge.

    I thought this was perhaps a software problem, maybe a bug in the dk-filter program

    So I tried dk-milter-1.0.1.tar.gz from late 2008

    Same problem!
     
    Last edited: Apr 6, 2009
  2. topdog

    topdog HowtoForge Supporter

    can the user dkim read the file /var/db/domainkeys/mail.key.pem ?
     
  3. kinesis

    kinesis New Member

    that may have been the issue, i got it to work but heres my problem now:

    From root@lunar Mon Apr 6 00:54:34 2009
    Return-Path: <root@lunar>
    Received: from lunar (lunar [127.0.0.1])
    by lunar.nuper.com (8.13.1/8.13.1) with ESMTP id n367sYYP027305
    for <k@lunar>; Mon, 6 Apr 2009 00:54:34 -0700
    X-DomainKeys: Sendmail DomainKeys Filter v1.0.2 lunar n367sYYP027305
    Received: (from root@localhost)
    by lunar.nuper.com (8.13.1/8.13.1/Submit) id n367sY2O027304
    for k@Localhost; Mon, 6 Apr 2009 00:54:34 -0700
    Date: Mon, 6 Apr 2009 00:54:34 -0700
    From: root <root@lunar>
    Message-Id: <200904060754.n367sY2O027304@lunar>
    To: k@lunar
    X-Spam-Status: No, score=2.7 required=5.0 tests=ALL_TRUSTED,MISSING_SUBJECT,
    TVD_SPACE_RATIO autolearn=no version=3.2.4
    X-Spam-Level: **
    X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on lunar

    hi


    my understanding is that im suppose to see a digital encryption key? all i see is version string appended. heres the flags im starting it with:
    /usr/bin/dk-filter -u dkim -P /var/run/dk-filter/dk-filter.pid -p /var/run/dk-filter/dk-filter.sock -R -l -b sv -c nofws \
    -h -H -i /etc/mail/local-host-names -s /etc/mail/domainkeys/mail.key.pem


    i want it to digitally sign my emails not just append a version header.. i also only want it done to OUTGOING emails, not incoming
     
    Last edited: Apr 6, 2009
  4. topdog

    topdog HowtoForge Supporter

    The email is not from an address within the signing domain so dk-filter will not sign the email. your from address is root@localhost
     
  5. kinesis

    kinesis New Member

    i'm proud to say i not only got it working, but i got a pass on the dkim test site
    thanks all for your help!!! i am partying my ass off now this is the biggest accomplishment ever in my career as a sysadmin!
     
    Last edited: Apr 6, 2009

Share This Page