"error loading key" and "key data is not secure", only from time to time...

From: <patpro_at_patpro.net>
Date: Mon, 14 Sep 2015 14:13:28 +0200

Hello,

I've installed OpenDKIM (as milter component, with Postfix) at work. It works great and I can sign outgoing messages. I've signed about 24000 messages in 3 days.

Strangely, I've seen some errors like this one:

Sep 14 13:06:14 ru opendkim[16344]: signall: key data is not secure: /var/db/opendkim/univ-lyon2.fr/201509-490482f6.private is in group 1003 which has multiple users (e.g., "opendkim")
Sep 14 13:06:14 ru opendkim[16344]: 6F97E139AB3: error loading key 'signall'

This error has occurred about 60 times in 3 days. That's about 0.25%. Very odd.

File permissions are ok (I think):

-r--r----- root opendkim /var/db/opendkim/univ-lyon2.fr/201509-490482f6.private
drwxr-x--- root opendkim /var/db/opendkim/univ-lyon2.fr
drwxr-x--- root opendkim /var/db/opendkim
drwxr-xr-x root wheel /var/db
drwxr-xr-x root wheel /var
drwxr-xr-x root wheel /

# id opendkim
uid=31986(opendkim) gid=6(mail) groups=6(mail),1003(opendkim)

# grep opendkim /etc/group
opendkim:*:1003:opendkim

I'm running opendkim-2.10.3 on FreeBSD 10.1-RELEASE

Any hint?

pat
Received on Mon Sep 14 2015 - 12:13:42 PST

This archive was generated by hypermail 2.3.0 : Mon Sep 14 2015 - 12:18:01 PST