Now 5 days into working with my first cloud server, running Symbiosis/Stretch to finally replace my ‘legacy’ VM.
The Symbiosis docs give the command to create a DKIM private key as:
openssl genrsa -out /srv/my-brilliant-site.com/config/dkim.key 2048 -outform PEM
This doesn’t work - probably due to changes in openssl. The genrsa option is apparently deprecated, and, whilst it’s still present, appears not to allow the ‘-outform PEM’ option.
A hopefuly equivalent command which does work is:
openssl genpkey -out /srv/my-brilliant-site.com/config/dkim.key -algorithm RSA -pkeyopt rsa_keygen_bits:2048 -outform PEM
And then, as in thread DKIM permission denied, exim (running as Debian-exim:Debian-exim) can’t read the key. I fixed this by changing the file permissions, and group, to:
but not claiming that’s necessarily the best way.