Sorry, I missed the plea for further info. I'm tried again using inet sockets with the same result.
On Sat, 9 Feb 2008 10:21:09 am Murray S. Kucherawy wrote: > The log segment you cited included lots of stuff from postfix but nothing > from dkim-filter. Does dkim-filter log nothing during this time? correct - nothing is logged during this time. The only dkim-filter log message its startup. > Do you > have logging enabled? Syslog yes > Are you checking all of the log files produced by > syslog (e.g. "daemon" vs. "mail")? daemon.log was empty. mail.log shows the startup Feb 17 04:44:18 lists dkim-filter[20551]: Sendmail DKIM Filter v2.4.4 starting (args: -x /etc/dkim-filter.conf -u dkim-filter -P /var/run/dkim-filter/dkim-filter.pid -p inet:[EMAIL PROTECTED] -vvv -i /etc/mail/internal.txt) > The SMFIC_HEADER message causes a call to mlfi_header(). That function > basicaly always returns a success status unless memory allocation or > regular expression functions fail, and it tries to log (at LOG_ERR level) > in both of those cases. Can't see anything from dkim-filter. Getting the same error 8 hrs after deployment Feb 17 13:00:23 lists postfix/cleanup[29377]: warning: milter inet:172.16.2.17:5000: can't read SMFIC_HEADER reply packet header: Connection reset by peer Feb 17 13:00:23 lists postfix/cleanup[29377]: 2AF6F1085CE: milter-reject: END-OF-MESSAGE from lists.cacert.org[172.16.2.17]: 4.7.1 Service unavailable - try again later; from=<[EMAIL PROTECTED]> to=<[EMAIL PROTECTED]> proto=ESMTP helo=<lists.cacert.org> > For ECONNRESET to happen, the filter would have to either crash or decide > that the MTA talking to it is sending gibberish and shut the connection > down. Is there any evidence of a crash (e.g. change of process ID, > coredump, etc.)? > none # cat /var/run/dkim-filter/dkim-filter.pid 20551 mail.info.0:Feb 17 14:12:09 lists dkim-filter[20551]: 0F87B1085C0 SSL error:04067069:rsa routines:RSA_EAY_PUBLIC_DECRYPT:pkcs1 padding too short process listing shows the same command and pid. and its still running on pid 20551 Configuration has no restart configured. Config for reference. # grep -v ^# /etc/dkim-filter.conf Syslog yes UMask 000 Domain lists.cacert.org KeyFile /etc/mail/jan2008.private Selector jan2008 InternalHosts /etc/mail/internal.txt Statistics /var/run/dkim-filter/dkim-stats Appoligies for the delay. Time to monitor a server for an extended period are limited. -- Daniel Black -- Proudly a Gentoo Linux User. Gnu-PG/PGP signed and encrypted email preferred http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x76677097 GPG Signature D934 5397 A84A 6366 9687 9EB2 861A 4ABA 7667 7097
signature.asc
Description: This is a digitally signed message part.
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ dkim-milter-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
