RE: Connection refused

From: Murray S. Kucherawy <msk_at_cloudmark.com>
Date: Thu, 22 Mar 2012 22:41:05 +0000

> -----Original Message-----
> From: opendkim-users-bounce_at_lists.opendkim.org [mailto:opendkim-users-bounce_at_lists.opendkim.org] On Behalf Of justatry
> Sent: Thursday, March 22, 2012 3:26 PM
> To: opendkim-users_at_lists.opendkim.org
> Subject: Re: Connection refused
>
> Hi all,
>
> Now, I can see the opendkim process running!
> To achieve that, I have modified the init.d/opendkim file like that
> (sorry, I guess this kind of modifications is evident for you guys...):
>
> NAME=opendkim
> #PATH=/bin:/usr/bin:/sbin:/usr/sbin
> #DAEMON=/usr/sbin/$NAME
> PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin:/usr/local/sbin
> DAEMON=/usr/local/sbin/$NAME
> PIDFILE=/var/run/$NAME/$NAME.pid
> CONFIG=/etc/$NAME.conf
> USER=opendkim
>
> I don't have "connection refused" in my mail.log any more but now, I
> have a "can't load key from /etc/opendkim/mydomain/default : permission
> denied" when an email is sent.

What are the permissions on that file and its parent? Do:

$ ls -ld / /etc /etc/opendkim /etc/opendkim/mydomain /etc/opendkim/mydomain/default

...and paste the output.

The issue is that opendkim switches to run as user "opendkim" after you start it as root, so it needs to be able to access that key file as that user. If it can't, you get that error.

-MSK
Received on Thu Mar 22 2012 - 22:41:13 PST