• The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue Cannot get OpenDKIM to run on Ubuntu 20.04, keep getting socket error!

zoldos

Basic Pleskian
Server operating system version
Ubuntu 20.04
Plesk version and microupdate number
Plesk Obsidian 18.0.69 Update #3 Web Pro Edition
I'm trying to get OpenDKIM running on my dedicated Ubuntu 20.04 server. I got it working briefly, then I messed something up. Here are the logs and more details:

Code:
May 06 14:51:28 condor2388 opendkim[2800874]: opendkim: /etc/opendkim.conf: /etc/opendkim/TrustedHosts: dkimf_db_open(): No such file or directory
May 06 14:51:28 condor2388 systemd[1]: opendkim.service: Control process exited, code=exited, status=78/CONFIG
May 06 14:51:28 condor2388 systemd[1]: opendkim.service: Failed with result 'exit-code'.
May 06 14:51:28 condor2388 systemd[1]: Failed to start OpenDKIM DomainKeys Identified Mail (DKIM) Milter.
----
systemctl status opendkim.service:

opendkim.service - OpenDKIM DomainKeys Identified Mail (DKIM) Milter
     Loaded: loaded (/lib/systemd/system/opendkim.service; enabled; vendor preset: enabled)
     Active: failed (Result: exit-code) since Fri 2025-05-09 17:43:54 CDT; 17s ago
       Docs: man:opendkim(8)
             man:opendkim.conf(5)
             man:opendkim-genkey(8)
             man:opendkim-genzone(8)
             man:opendkim-testadsp(8)
             man:opendkim-testkey
             http://www.opendkim.org/docs.html
Process: 332658 ExecStart=/usr/sbin/opendkim -x /etc/opendkim.conf (code=exited, status=78)

May 09 17:43:54 condor2388 systemd[1]: opendkim.service: Scheduled restart job, restart counter is at 5.
May 09 17:43:54 condor2388 systemd[1]: Stopped OpenDKIM DomainKeys Identified Mail (DKIM) Milter.
May 09 17:43:54 condor2388 systemd[1]: opendkim.service: Start request repeated too quickly.
May 09 17:43:54 condor2388 systemd[1]: opendkim.service: Failed with result 'exit-code'.
May 09 17:43:54 condor2388 systemd[1]: Failed to start OpenDKIM DomainKeys Identified Mail (DKIM) Milter.

All paths are correct, all files exist with correct permissions and groups. I just can't get it to work. I think it's a socket error. Here is my Opendkim.conf file:

Code:
Domain                 bloodofsouls.com
Mode                   sv
KeyFile                /etc/opendkim/keys/bloodofsouls.com/default.private
Selector               default
Umask                  002
UserID                 opendkim:opendkim
KeyTable               /etc/opendkim/KeyTable
SigningTable           /etc/opendkim/SigningTable
ExternalIgnoreList     /etc/opendkim/TrustedHosts
InternalHosts          /etc/opendkim/TrustedHosts
PidFile                /run/opendkim/opendkim.pid
OversignHeaders        From
# Milter configuration
MilterProtocol         6
MilterSocket           local:/var/spool/postfix/opendkim/opendkim.sock
MilterSocketGroup      postfix
MilterSocketMode       660

It keeps saying config error on one specific line: MilterSocket, and I just can't get OpenDKIM to initialize.

I went in circles with a coding A.I. for 2 days, I guess I should have stopped when it was working, but then I had another error.

Can anyone help? My server's sent e-mails *are* being delivered, they just aren't being signed. SPF passes, and DMARC passes.

Thanks!!
 
Why not just use the DKIM built into Plesk? If you really want to use OpenDKIM instead of what's built into Plesk, then you'll probably want to check out Resolved - Connecting OpenDKIM and Milter configuration on Plesk Obsidian as that user outline the process for getting it to work properly.
There are multiple domains/sites on my server. Will the built in DKIM work for just *my* site? I don't want to interfere with the other domains since they aren't mine. I'm the server admin tho. :)
 
Back
Top