Debian 延伸。Postfix + dkim + dmarc。
Opendmarc 无法正常工作。我收到:
Nov 26 10:36:07 mail postfix/smtpd[30012]: warning: connect to Milter service inet:localhost:8893: Connection refused
相关配置:
/etc/默认/opendmarc
7 RUNDIR=/var/run/opendmarc
16 SOCKET=inet:8893@localhost
19 USER=opendmarc
20 GROUP=opendmarc
21 PIDFILE=$RUNDIR/$NAME.pid
22 EXTRAAFTER=
/etc/opendmarc.conf
58 UMask 0002
59
60 ## UserID user[:group]
61 ## default (none)
62 ##
63 ## Attempts to become the specified userid before starting operations.
64 ## The process will be assigned all of the groups and primary group ID of
65 ## the named userid unless an alternate group is specified.
66 #
67 UserID opendmarc:opendmarc
68 Socket inet:8893@localhost
(我也尝试过 umask 007)
/etc/postfix/main.cf
85 milter_default_action = accept
86 #milter_protocal = 2
87 smtpd_milters = inet:localhost:8891 inet:localhost:8893
88 non_smtpd_milters = inet:localhost:8891 inet:localhost:8893
这是启动时的日志条目:
Nov 26 10:44:04 mail opendmarc[30162]: OpenDMARC Filter v1.3.2 starting (args: -p local:/var/run/opendmarc/opendmarc.sock -u opendmarc -P /var/run/opendmarc/opendmarc.pid)
Nov 26 10:44:04 mail opendmarc[30162]: additional trusted authentication services: mail.lancasterfungus.com
该端口从未创建,因此在 netstat 中没有列出。
答案1
我仍在等待邮件列表中的某个人来解释为什么会发生这种情况。
/list/systemd/system/opendmarc.service 文件使用 -f 选项进行硬编码,并且由于某种原因被设置为本地套接字。
两个修复选项。要么添加 -c /path/to/opendmarc.conf 并删除 -p,要么直接更改为 -p inet:port@server