Trying to send an email from n...@complete-web-solutions.com on the host sv9.complete-web-solutions.com results in the following messages in mail.log:
postfix/cleanup[40982]: F29AA21C4C: message- id=<20230211151120.f29aa21...@sv9.complete-web-solutions.com> opendkim[3223]: F29AA21C4C: SSL error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long opendkim[3223]: F29AA21C4C: dkim_eom(): resource unavailable: d2i_PrivateKey_bio() failed postfix/cleanup[40982]: F29AA21C4C: milter-reject: END-OF-MESSAGE from localhost[127.0.0.1]: 4.7.0 resource unavailable; from=<nick@complete- web-solutions.com> to=<n...@complete-web-solutions.com> But opendkim seems correctly configured because the command: opendkim-testkey -d complete-web-solutions.com -s 202302081 -v -x /etc/opendkim.conf gives the result: opendkim-testkey: key secure /etc/postfix/main.cf (with comments and blank lines stripped): smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU) biff = no append_dot_mydomain = no readme_directory = no compatibility_level = 2 smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination myhostname = sv9.complete-web-solutions.com alias_maps = hash:/etc/aliases alias_database = hash:/etc/aliases myorigin = /etc/mailname mydestination = $myhostname, complete-web-solutions.com, sv9.complete- web-solutions.com, localhost.complete-web-solutions.com, oxbridgealumni.net, localhost relayhost = mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 mailbox_size_limit = 0 recipient_delimiter = + inet_interfaces = all inet_protocols = all milter_default_action = accept smtpd_milters = inet:localhost:8892 non_smtpd_milters = $smtpd_milters internal_mail_filter_classes = bounce /etc/opendkim.conf (comments and blank lines stripped): Syslog yes LogWhy yes UMask 022 Canonicalization relaxed/simple Mode sv SubDomains yes Socket inet:8892@localhost PidFile /var/run/opendkim/opendkim.pid OversignHeaders From TrustAnchorFile /usr/share/dns/root.key UserID opendkim:opendkim KeyTable file:/etc/dkimkeys/keytable SigningTable file:/etc/dkimkeys/signingtable I'm assuming the /etc/dkimkeys entries are correct since opendkim- testkey works (see above). Can anyone see the cause of the problem or suggest how to diagnose?
