Can we get a bit more info?
Does the LDAP returning a full private key identical to that one
"openssl genrsa 1024" prints between and including
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
It looks from "no start line" that at least the first line isn't there.
On 16/12/12 06:25, Christian Rößner wrote:
> Hi,
>
> for some reason, opendkim suddenly stopped working here. I get the following error in my log file:
>
> Dec 15 20:19:16 mx0 opendkim[22798]: 3YNz2X1X2sz2WBq: SSL error:0906D06C:PEM routines:PEM_read_bio:no start line
> Dec 15 20:19:16 mx0 opendkim[22798]: 3YNz2X1X2sz2WBq: dkim_eom(): resource unavailable: PEM_read_bio_PrivateKey() failed
>
> This is the last of three milters in postfix. All three milters use the same certificates to connect to ldap. I double checked all certificates, if one of them was expired. Also checked permissions.
>
> As I did not change anything, I can not understand what happened. If I disable opendkim, amavis and my own milter is working perfectly and mail passes successfully.
>
> I had version 1.7.2. Now I upgraded to verion 1.7.3, but this does not work either.
>
> What could have gone broken here? The interesting thing is: I can start the milter and it connects over tls to my ldap:
>
> opendkim 22798 opendkim 3u IPv6 19204215 0t0 TCP [2a01:4f8:131:1081:88:198:80:230]:34092->[2a01:4f8:131:1081::2]:389 (ESTABLISHED)
> opendkim 22798 opendkim 4u IPv6 19204221 0t0 TCP [2a01:4f8:131:1081:88:198:80:230]:34093->[2a01:4f8:131:1081::2]:389 (ESTABLISHED)
>
> I also enabled port 636 (ldaps) and did openssl s_client tests, which passed (ok). So I am stuck at the moment.
>
> Thanks in advance
>
> -Christian Rößner
>
> --
> [*] sys4 AG
>
> http://sys4.de, +49 (89) 30 90 46 64
> Franziskanerstraße 15, 81669 München
>
> Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
> Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer
> Aufsichtsratsvorsitzender: Joerg Heidrich
>
>
>
>
Received on Sun Dec 16 2012 - 08:07:50 PST