Re: OpenDKIM 2.1.3 fails to start due to KeyFile and Selector problems from Rolf E. Sonneveld on 2010-08-10 (OpenDKIM Users mailing list)

From: Rolf E. Sonneveld <R.E.Sonneveld_at_sonnection.nl>
Date: Tue, 10 Aug 2010 21:23:03 +0200

Murray S. Kucherawy wrote:
>> -----Original Message-----
>> From: opendkim-users-bounce_at_lists.opendkim.org [mailto:opendkim-users-
>> bounce_at_lists.opendkim.org] On Behalf Of Rolf E. Sonneveld
>> Sent: Tuesday, August 10, 2010 11:42 AM
>> To: opendkim-users_at_lists.opendkim.org
>> Subject: OpenDKIM 2.1.3 fails to start due to KeyFile and Selector
>> problems
>>
>
> While waiting for that other information, some explanation (which may mean we don't need your config files after all):
>
>
>> when trying to start opendkim 2.1.3 for the first time I get the
>> following error:
>>
>> Starting DomainKeys Identified Mail OpenDKIM (opendkim): opendkim:
>> /usr/local/etc/opendkim/opendkim.conf: KeyFile and Selector must both
>> be
>> defined or both be undefined
>>
>> In opendkim.conf I have both KeyFile and Selector as per the default:
>>
>> KeyFile /var/db/dkim/example.private
>> Selector my-selector-name
>>
>
> KeyFile is ignored if KeyTable is set, which seems to be the case given this comment:
>
>
>> Because I configured opendkim to use KeyTable and SigningTable, and
>> because of the comments above the KeyFile line, I thought opendkim
>> would
>> ignore KeyFile and Selector.
>>
>
> It ignores KeyFile, but not Selector, when KeyTable is set. It probably should ignore Selector as well.
>
>
>> Then, I disabled both in opendkim.conf. But now, when starting, I get
>> the following error:
>>
>> Starting DomainKeys Identified Mail OpenDKIM (opendkim): opendkim:
>> /usr/local/etc/opendkim/opendkim.conf: Domain requires KeyFile and
>> Selector
>>
>
> You probably have Domain and KeyTable both defined.

No, when I got those errors KeyTable was defined but Domain was not.

> The configuration should refuse that as well; KeyTable includes the signing domains, so there's no need to set Domain.
>

May I suggest to document this mutual exclusiveness either with Domain
or with KeyTable or both?

> I'll clean this up a little for 2.2.0.
>
And shouldn't KeyFile and Selector also be ignored when SigningTable is
defined, or is that already implemented?

Thanks,

/rolf
Received on Tue Aug 10 2010 - 19:23:18 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:19:48 PST