Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [opendkim]

Open source implementation of the DKIM (Domain Keys Identified Mail). The capabilities include signing and verifying DKIM signature of the email.

OpenDKIM is an open source implementation of the (Domain Keys Identified Mail) sender authentication system standardized by the IETF (RFC6376). The project started from a code fork of version 2.8.3 of the open source dkim-milter package,

OpenDKIM capabilities was including signing and verifying DKIM signature of the email. The package consists of a library that implements the DKIM service and a milter-based filter application that can plug in to any milter-aware MTA such as and .

The documentation of command line options can be found in this page.
The documentation of opendkim.conf configuration file can be found in this page.

163 questions
1
vote
1 answer

openDKIM breaks email forwarding

After moving our server over to Postfix, I have decided to implement DKIM using OpenDKIM. I have been successfully able to install and run this, but while it is enabled as a milter, all mail forwarding on the server becomes broken. For example, if I…
Joe
  • 13
  • 4
1
vote
1 answer

opendkim public key not available

I'm having problems with my mail server sending or reciving mails from/to hotmail can anyone explain for newbies what all this errors on postfix log/gmail header/website dkim validator are telling me and give me a clue what should i do next? Centos…
MikZuit
  • 391
  • 2
  • 7
  • 16
1
vote
1 answer

Using DeamonPortOptions to fix DKIM signing with genericstable masquerading

I'm sending mails from my debian server with sendmail. I want to be able to send mail with multiple domains using masquerading with genericstable. I am signing the mails with OpenDKIM but because OpenDKIM signs the mail before masquerading happens…
Sandman
  • 11
  • 4
1
vote
1 answer

Postfix/OpenDKIM not signing PHP sent emails

We installed SPF, DKIM, and DMARC records for email security/verifiability. When sending through the console or a mail client like Outlook or Mac's Mail it processes fully and has all three pass. When sending through Zend Framework 1.12's SendMail…
Darius
  • 335
  • 5
  • 15
1
vote
1 answer

DKIM signing key

when I create DKIM key like this: sudo opendkim-genkey -s mail -d example.com -s specifies the selector and -d the domain, this command will create two files, mail.private is our private key and mail.txt contains the public key. Should I insert…
asort2ts
  • 11
  • 1
1
vote
1 answer

opendkim-testkey: keys do not match

How do you produce the 'default._domainkey.drpedroazevedo.com' file? I deleted mine because my key expired and opendkim-keygen did not produce a new one as expected. mlr01 keys # opendkim-testkey -d drpedroazevedo.com -s default -vvv -k…
mine
  • 197
  • 1
  • 4
  • 14
1
vote
2 answers

Why is OpenDKIM not signing and verifying my emails? (CentOS 6.5, Postfix & OpenDKIM)

I'm running: CentOS 6.5 Postfix 2.6.6 opendkim: OpenDKIM Filter v2.9.0 Compiled with OpenSSL 1.0.1e-fips 11 Feb 2013 SMFI_VERSION 0x1000001 libmilter version 1.0.1 Supported signing algorithms: rsa-sha1 rsa-sha256 …
Jim Thornton
  • 41
  • 2
  • 6
1
vote
0 answers

OpenDKIM on Fedora Server, opendkim-testkey loads the key, says it's checking it, then just says "query failed" How do I find (and fix) what's wrong?

On Fedora Server 37 (updated as of about February 1, 2023), a new OpenDKIM installation was performed (it's version v2.11.0). The configuration included creating a signing table and a key table, and creation of a key, as well as publishing it in…
Richard T
  • 1,206
  • 12
  • 29
1
vote
3 answers

How destination mail server can know the DKIM selector

It is possible to set a "subdomain" in DKIM DNS record name. This "subdomain" is called a selector. It allows to have multiple DKIM keys for the same domain. There is something I do not understand during the DKIM verification. Let's suppose Bob…
Bob5421
  • 319
  • 3
  • 8
  • 16
1
vote
0 answers

Postfix: getting 50 or more copies of the same email from specific senders

I have a Postfix (2.10.1) / Dovecot server running on Centos 7. From specific servers I get about 50 copies of the same email every weekend, I tried a wireshark but it uses STARTTLS so its all encrypted, so I turned on logging in postfix. Everything…
Jeremy
  • 11
  • 2
1
vote
0 answers

Why are my mails failling body hash verification?

Since a few weeks, mails sent via my mailserver at the-grue.de fail dkim authentification. That's very strange, because I'm not at all aware of any changes on my part... mxtoolbox checked the mail, with this…
Markus Grunwald
  • 13
  • 4
1
vote
3 answers

Can't open PID file /run/opendkim/opendkim.pid (yet?) after start: Operation not permitted

i am about 2 hours on configure dkim with postfix on ubuntu 20.04. I try absolutly everything, but dkim wont work. OpenDKIM-Service won´t start: root@mail:~# service opendkim status ● opendkim.service - OpenDKIM DomainKeys Identified Mail (DKIM)…
nils50122
  • 21
  • 1
  • 7
1
vote
1 answer

Configuring postfix and opendkim socket value

I have the following line in my /etc/postfix/main.cf smtpd_milters=inet:127.0.0.1:8891 inet:127.0.0.1:8893 So then What should I put for Socket in /etc/default/opendkim or /etc/opendkim.conf ?
user17130130
  • 23
  • 3
1
vote
2 answers

OpenDKIM-provided tools do not provide a usable key-pair for DKIM

I use opendkim-genkey -b 2048 -t -s default -d mydomain.com, resulting in files default.private and default.txt. Yes, default.private begins (correctly, SFAIK) with -----BEGIN RSA PRIVATE KEY----- and default.txt does not exceed 256 chars per…
Eric Dynamic
  • 11
  • 2
1
vote
0 answers

Postfix from rewriting (smtp_generic_maps) + DKIM

We have SMTP server for the application emails what should do following: change “From” for all emails sign emails with DKIM I have set up postfix rewriting with smtp_generic. The default flow is like that: Email comes to postfix OpenDKIM will…
Juhani
  • 11
  • 1
1 2 3
10 11