Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [opendkim]

Open source implementation of the DKIM (Domain Keys Identified Mail). The capabilities include signing and verifying DKIM signature of the email.

OpenDKIM is an open source implementation of the (Domain Keys Identified Mail) sender authentication system standardized by the IETF (RFC6376). The project started from a code fork of version 2.8.3 of the open source dkim-milter package,

OpenDKIM capabilities was including signing and verifying DKIM signature of the email. The package consists of a library that implements the DKIM service and a milter-based filter application that can plug in to any milter-aware MTA such as and .

The documentation of command line options can be found in this page.
The documentation of opendkim.conf configuration file can be found in this page.

163 questions
1
vote
1 answer

opendkim-genkey output for 2048 bits is done in three segments

I'm setting up a new email server and decided to up my DKIM to 2048-bit, which by studies is now the common value. Running opendkim-genkey, the output seems different than the old 1024-bit version. mydomain.com._domainkey IN TXT (…
gariac
  • 46
  • 1
  • 8
1
vote
2 answers

How can I test the DKIM configuration of my server (Postfix + OpenDKIM)?

I configured my server (Debian Jessie) and domain with DKIM. I installed OpenDKIM on my server, and followed this tutorial. I went to my domain provider, and set a new DNS TXT record for mail._domainkey.example.com: "v=DKIM1; k=rsa;…
The Quantum Physicist
  • 658
  • 2
  • 11
  • 26
1
vote
1 answer

Outlook is rejecting emails without any notification

i have configured postfix with opendkim. Everything is working fine, I have tested DKIM records as well as DMARC and SPF, everything seems fine. I am also receiving emails on my gmail account in Inbox. But when I try to send email to Outlook.com,…
nix
  • 53
  • 3
  • 13
1
vote
1 answer

Opendkim and Postfix: Not all outgoing mails are verified

I configured a send-only postfix server to send mails but don't listen to incoming connections from the outside world. I'm running a Grafana instance and postfix only exists so Grafana can send password reminders, etc. To ensure these mails are not…
LuMa
  • 257
  • 4
  • 13
1
vote
0 answers

postfix dkim=neutral reason="invalid (public key: missing p= tag)" outgoing email not received

I use postfix to send outgoing emails ... a user does not receive sent posts ... when I sent same to my gmail account post does arrive in inbox ... yet below is what appears on Show Original Authentication-Results: example.com (amavisd-new);…
Scott Stensland
  • 245
  • 4
  • 11
1
vote
1 answer

opendkim - how to take action on incoming messages that should be signed?

How can I configure opendkim to quarantine or reject (incoming) unsigned messages that instead should be signed because a key is present in the DNS? opendkim.conf(5): On-NoSignature (string) Selects the action to be taken when a message arrives…
Gabriele
  • 341
  • 1
  • 4
  • 14
1
vote
2 answers

Received spam spoofed from my domain is signed by opendkim, spf=pass by opendmarc

I've configured postfix with opendkim and opendmarc. Outgoing mail is signed correctly, and incoming mail appears to be validated (dkim, spf, dmarc) with one notable exception - anyone can connect to postfix on 25, send mail from fake@mydomain.com…
mal
  • 11
  • 5
1
vote
1 answer

DKIM header exists but signature is not valid

UPDATE Now the validator at mail-tester.com says the DKIM signature is fine. On the other hand the isnotspam.com still doesn't seem to like it. I assume it is working fine now. Also gmail accepts the email. The change I made: I changed…
dexter
  • 131
  • 2
  • 6
1
vote
1 answer

message headers say dkim = fail, stats say = PASSED. why the conflict, and how to fix?

In some-not-all received emails -- notably ONLY those sent via 'bulk' services -- I get a DKIM fail: "signature verification failed". Here's one example: Received message headers DKIM-Filter: OpenDKIM Filter v2.10.3 mail.example.com…
Jason
  • 11
  • 1
  • 3
1
vote
0 answers

DKIM - OpenSSL error: data too large for key size

I have installed openDKIM on a CentOS server running Exim as my MTA. I have gone through the configuration and tested the keys and eveything seems fine. I have created the public and private keys, added the DNS TXT entry and setup the KeyTable,…
Edwin Okugbo
  • 11
  • 5
1
vote
1 answer

Postfix with opendkim: missing id's

I'm setting up a high performance mailserver using multi-instance postfix with TLS and opendkim. This machine is only for sending. All seems to be well, except that when submitting lots of messages the normal flow of adding a signature, delivering…
svdr
  • 31
  • 4
1
vote
1 answer

OpenDKIM and canonicalization of quotes

In the long-running battle against a considerable percentage of the DKIM failures for the signatures generated on my servers, I've noted an interesting occurence. Today I've got this DKIM failure report: User-Agent: OpenDKIM-Filter/2.10.3 Version:…
kubanczyk
  • 13,812
  • 5
  • 41
  • 55
1
vote
0 answers

Sendmail refuses to sign messages with DKIM provided by opendkim

I have sendmail and opendkim installed on ubuntu 14.04 and would like to configure DKIM. Unfortunately sendmail refuses to sign outgoing emails with DKIM. Despite the fact that it already did before, but I commented it due to the fact that I did…
merlin
  • 2,093
  • 11
  • 39
  • 78
1
vote
1 answer

"lost connection after UNKNOWN" (OpenDKIM + postfix receiving emails)

I had a fully working mail server before installingopendkim with TLS with a free StartSSL certificate, that Thunderbird could interface with properly to send/receive email. My distro is Debian 8. However after installing opendkim I can send…
tiger
  • 33
  • 2
  • 5
1
vote
1 answer

Users allowed to send mail using postfix

I've installed postfix and opendkim on my ubuntu server, intending to use this server as a private relay for an application to send "activation" emails to new users. I configured SASL authentication with dovecot-commons to protect it. I did a test…
ystan-
  • 367
  • 1
  • 2
  • 10
1 2 3
10 11