error at starting service sendmail

classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

error at starting service sendmail

Henk A.M. Weebers

Since beginning of this week I got log messages which I don't understand. the first log after trying to start sendmail says somthing about the private key.

I tried to debug, but can't find it.

/var/log/mail:

Nov 4 21:54:44 centraal sendmail[20702]: starting daemon (8.13.4): SMTP+queueing@00:30:00

Nov 4 21:54:44 centraal sendmail[20702]: STARTTLS=server, error: SSL_CTX_use_PrivateKey_file(/etc/mail/certs/key.pem) failed

Nov 4 21:54:44 centraal sendmail[20702]: NOQUEUE: SYSERR(root): opendaemonsocket: daemon MTA: cannot bind: Permission denied

Nov 4 21:54:44 centraal sendmail[20702]: daemon MTA: problem creating SMTP socket

Nov 4 21:54:44 centraal sendmail[20702]: NOQUEUE: SYSERR(root): opendaemonsocket: daemon MTA: server SMTP socket wedged: exiting

Nov 4 21:54:45 centraal sendmail[20703]: jA4GVZth019253: SYSERR(root): makeconnection_ds: unsafe domain socket /var/imap/socket/lmtp: No such file or directory

Nov 4 21:54:45 centraal sendmail[20703]: jA4GVZth019253: SYSERR(root): mci_lock_host: cannot create host lock file .hoststat/localhost: Permission denied

So I tried to search in openssl:

openssl s_client returns: errno=111

openssl s_server returns:

Using default temp DH parameters

unable to get certificate from 'server.pem'

21386:error:02001002:system library:fopen:No such file or directory:bss_file.c:104:fopen('server.pem','r')

21386:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:107:

21386:error:02001002:system library:fopen:No such file or directory:bss_file.c:278:fopen('server.pem','r')

21386:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:280:

21386:error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib:ssl_rsa.c:515:

error in s_server

I don't get wise from that. What should I try more?

Henk

Reply | Threaded
Open this post in threaded view
|

Re: error at starting service sendmail

Claus Assmann
On Fri, Nov 04, 2005, Henk A.M. Weebers wrote:

> Nov  4 21:54:44 centraal sendmail[20702]: NOQUEUE: SYSERR(root): opendaemonsocket: daemon MTA: cannot bind: Permission denied

Looks like you don't start sendmail as root. See the sendmail
documentation.

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: error at starting service sendmail

Henk A.M. Weebers
Claus,
sendmail is nat able to start due to
Nov 4 21:54:44 centraal sendmail[20702]: STARTTLS=server, error:
SSL_CTX_use_PrivateKey_file(/etc/mail/certs/key.pem) failed

I reconfigured cetificates and key but the error remains
But why?

Op zondag 06 november 2005 02:26, schreef Claus Assmann:

> On Fri, Nov 04, 2005, Henk A.M. Weebers wrote:
> > Nov  4 21:54:44 centraal sendmail[20702]: NOQUEUE: SYSERR(root):
> > opendaemonsocket: daemon MTA: cannot bind: Permission denied
>
> Looks like you don't start sendmail as root. See the sendmail
> documentation.
>
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [hidden email]
> Automated List Manager                           [hidden email]
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: error at starting service sendmail

Dr. Stephen Henson
On Sun, Nov 06, 2005, Henk A.M. Weebers wrote:

> Claus,
> sendmail is nat able to start due to
> Nov 4 21:54:44 centraal sendmail[20702]: STARTTLS=server, error:
> SSL_CTX_use_PrivateKey_file(/etc/mail/certs/key.pem) failed
>
> I reconfigured cetificates and key but the error remains
> But why?
>

Have you got a valid private key in that file which is readable by whatever
user sendmail becomes at that time?

Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details on homepage.
Homepage: http://www.drh-consultancy.demon.co.uk
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: error at starting service sendmail

Claus Assmann
In reply to this post by Henk A.M. Weebers
On Sun, Nov 06, 2005, Henk A.M. Weebers wrote:

Please trim your reply, don't quote everything and don't toppost.
Usually I wouldn't reply, but it's Sunday and the weather sucks.

> sendmail is nat able to start due to
> Nov 4 21:54:44 centraal sendmail[20702]: STARTTLS=server, error:
> SSL_CTX_use_PrivateKey_file(/etc/mail/certs/key.pem) failed

I'm 99% sure that you are looking at the wrong problem.
Did you read my mail?

> > Looks like you don't start sendmail as root. See the sendmail
                         ^^^^^^^^^^^^^^^^^^^^^^
> > documentation.


If that doesn't help: post the file/directory permission and
the command that causes the error.

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: error at starting service sendmail

Henk A.M. Weebers
Sendmail wasn't able to start due to runing subdomain service. I hav te
configure that first.
Thanks
Henk
Op zondag 06 november 2005 22:45, schreef Claus Assmann:

> On Sun, Nov 06, 2005, Henk A.M. Weebers wrote:
>
> Please trim your reply, don't quote everything and don't toppost.
> Usually I wouldn't reply, but it's Sunday and the weather sucks.
>
> > sendmail is nat able to start due to
> > Nov 4 21:54:44 centraal sendmail[20702]: STARTTLS=server, error:
> > SSL_CTX_use_PrivateKey_file(/etc/mail/certs/key.pem) failed
>
> I'm 99% sure that you are looking at the wrong problem.
> Did you read my mail?
>
> > > Looks like you don't start sendmail as root. See the sendmail
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]