SYSTEM INFORMATION | |
---|---|
OS type and version | CentOS 7.9.2009 |
Webmin version | 1.990 |
Virtualmin version | 6.17 |
opendkim version | 2.11.0-0.1.el7 |
For some reason opendkim will not start. We have always tried to limit changes to our system and if any are made we make them by way of the Virtaulmin web interface. So when we installed DKIM, it was done with Virtalmin → Email Settings → DomainKeys Identified Mail. However, when we try to start the service it fails with the following:
Apr 05 11:25:59 server2.com systemd[1]: Starting DomainKeys Identified Mail (DKIM) Milter...
-- Subject: Unit opendkim.service has begun start-up
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit opendkim.service has begun starting up.
Apr 05 11:25:59 server2.com opendkim[19855]: /etc/opendkim/keys/default.private: key data is not secure: / is writeable and owned by uid 500 which is not the executing uid (499) or the superuser
Apr 05 11:25:59 server2.com opendkim[19855]: opendkim: /etc/opendkim.conf: / is writeable and owned by uid 500 which is not the executing uid (499) or the superuser
Apr 05 11:25:59 server2.com systemd[1]: opendkim.service: control process exited, code=exited status=78
Apr 05 11:25:59 server2.com systemd[1]: Failed to start DomainKeys Identified Mail (DKIM) Milter.
-- Subject: Unit opendkim.service has failed
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit opendkim.service has failed.
--
-- The result is failed.
Apr 05 11:25:59 server2.com systemd[1]: Unit opendkim.service entered failed state.
Apr 05 11:25:59 server2.com systemd[1]: opendkim.service failed.
“server2.com” is just a filler for our actual server name. When looking at the error, it appears that it is a rights issue. When we check the ownership:
[root@server2 log]# ls -lnd /etc/opendkim
drwxr-xr-x 3 499 498 4096 Apr 5 10:02 /etc/opendkim
IDs 499 and 498 are the actual user and group numbers for opendkim. So, why is the service wanting to execute as a different (500) user? The 500 user:group is a user account in one of the virtual domains on the system. We tried removing opendkim with yum and then reinstalling using Virtualmin bit still have the same result. We do have another server that runs opendkim just fine and we see no differences in configurations.
Any help would be greatly appreciated.