Re: [qmailtoaster] DKIM/Domainkeys
On 03/02/2010 04:05 PM, MagicWISP Sales wrote: OK, here is my real confusion on DKIM and Domainkeys, and I think I have found out the general area of my problem, just not what to do to correct it. I think something is goofy in my DNS, just not sure what. I have tried adding a txt record for dkim1.mail.magicwisp.com, but it didn't help. Why is it looking for dkim1._domainkey.mail.magicwisp.com? It was renamed per the instructions on Jakes video, and nowhere in my DNS is dkim1._domainkey mentioned. This is starting to drive me buggy. My domain is magicwisp.com, my servers hostname is mail.magicwisp.com. If I do a dig for the keys: For DKIM it is looking for dkim1._domainkey.mail.magicwisp.com (note this does not match any entry in your zone file) I'll go back through the video soon and check to see if I left a step out or mistyped something. Check the archives to make sure someone did not post about it - I know someone else had a DNS issue with DKIM and posted to either the list or to me directly. I'm getting dozens of emails right now for many different things that should be asked on the mailing list, so my Inbox is a little cluttered at this point. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
RE: [qmailtoaster] DKIM/Domainkeys
:'20'text/html;'0D''0A' '09'charset=us-ascii'0D''0A' Content-Transfer-Encoding:'20'quoted-printable'0D''0A' '0D''0A' html'20'xmlns:v=3Durn:schemas-microsoft-com:vml'20'='0D''0A' xmlns:o=3Durn:schemas-microsoft-com:office:office'20'='0D''0A' xmlns:w=3Durn:schemas-microsoft-com:office:word'20'='0D''0A' xmlns:m=3Dhttp://schemas.microsoft.com/office/2004/12/omml;'20'='0D''0A' xmlns=3Dhttp://www.w3.org/TR/REC-html40;'0D''0A' '0D''0A' head'0D''0A' META'20'HTTP-EQUIV=3DContent-Type'20'CONTENT=3Dtext/html;'20'='0D''0A' charset=3Dus-ascii'0D''0A' meta'20'name=3DGenerator'20'content=3DMicrosoft'20'Word'20'12'20'(filtered '20'medium)'0D''0A' style'0D''0A' !--'0D''0A' '20'/*'20'Font'20'Definitions'20'*/'0D''0A' '20'@font-face'0D''0A' '09'{font-family:Cambria'20'Math;'0D''0A' '09'panose-1:2'20'4'20'5'20'3'20'5'20'4'20'6'20'3'20'2'20'4;}'0D''0A' @font-face'0D''0A' '09'{font-family:Calibri;'0D''0A' '09'panose-1:2'20'15'20'5'20'2'20'2'20'2'20'4'20'3'20'2'20'4;}'0D''0A' '20'/*'20'Style'20'Definitions'20'*/'0D''0A' '20'p.MsoNormal,'20'li.MsoNormal,'20'div.MsoNormal'0D''0A' '09'{margin:0in;'0D''0A' '09'margin-bottom:.0001pt;'0D''0A' '09'font-size:11.0pt;'0D''0A' '09'font-family:Calibri,sans-serif;}'0D''0A' a:link,'20'span.MsoHyperlink'0D''0A' '09'{mso-style-priority:99;'0D''0A' '09'color:blue;'0D''0A' '09'text-decoration:underline;}'0D''0A' a:visited,'20'span.MsoHyperlinkFollowed'0D''0A' '09'{mso-style-priority:99;'0D''0A' '09'color:purple;'0D''0A' '09'text-decoration:underline;}'0D''0A' span.EmailStyle17'0D''0A' '09'{mso-style-type:personal-compose;'0D''0A' '09'font-family:Calibri,sans-serif;'0D''0A' '09'color:windowtext;}'0D''0A' .MsoChpDefault'0D''0A' '09'{mso-style-type:export-only;}'0D''0A' @page'20'Section1'0D''0A' '09'{size:8.5in'20'11.0in;'0D''0A' '09'margin:1.0in'20'1.0in'20'1.0in'20'1.0in;}'0D''0A' div.Section1'0D''0A' '09'{page:Section1;}'0D''0A' --'0D''0A' /style'0D''0A' !--[if'20'gte'20'mso'20'9]xml'0D''0A' '20'o:shapedefaults'20'v:ext=3Dedit'20'spidmax=3D1026'20'/'0D''0A' /xml![endif]--!--[if'20'gte'20'mso'20'9]xml'0D''0A' '20'o:shapelayout'20'v:ext=3Dedit'0D''0A' '20''20'o:idmap'20'v:ext=3Dedit'20'data=3D1'20'/'0D''0A' '20'/o:shapelayout/xml![endif]--'0D''0A' /head'0D''0A' '0D''0A' body'20'lang=3DEN-US'20'link=3Dblue'20'vlink=3Dpurple'0D''0A' '0D''0A' div'20'class=3DSection1'0D''0A' '0D''0A' p'20'class=3DMsoNormalTesting'20'DKIMo:p/o:p/p'0D''0A' '0D''0A' /div'0D''0A' '0D''0A' /body'0D''0A' '0D''0A' /html'0D''0A' '0D''0A' --=_NextPart_000_00F7_01CABA18.239ACF10--'0D''0A' DNS record(s): dkim1._domainkey.mail.magicwisp.com. TXT (NXDOMAIN) NOTE: DKIM checking has been performed based on the latest DKIM specs (RFC 4871 or draft-ietf-dkim-base-10) and verification may fail for older versions. If you are using Port25's PowerMTA, you need to use version 3.2r11 or later to get a compatible version of DKIM. -Original Message- From: sa...@magicwisp.com [mailto:sa...@magicwisp.com] Sent: Monday, March 01, 2010 4:52 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] DKIM/Domainkeys That did not seem to correct the problem. I am still getting the same error when testing DKIM. On 03/01/2010 10:51 AM, sa...@magicwisp.com wrote: I have setup DKIM using Jakes videos, and the wiki for domainkeys. I have a problem. DKIM isn't working at all and domainkeys is intermittent. Here is the email I get from check-a...@verifier.port25.com. -- DomainKeys check details: -- Result: fail (bad signature) ID(s) verified: header.from=jack.d.mar...@magicwisp.com DNS record(s): private._domainkey.magicwisp.com. 1800 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyaz GDWAMas 0jf4LFv2PU04CcshyL+637GwIDAQAB -- DKIM check details: -- Result: permerror (key dkim1._domainkey.mail.magicwisp.com doesn't exist) I think this last one will be your issue - it's expecting a record for dkim1._domainkey.mail.magicwisp.com Try adding a record for that and see if it resolves your issue. I believe someone else had a similar issue and posted on the list about this, maybe 3-4 months back. Search the archives. If you cannot find anything, I'll check my account as they may have email me directly. -- --- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations
[qmailtoaster] DKIM/Domainkeys
I have setup DKIM using Jakes videos, and the wiki for domainkeys. I have a problem. DKIM isn't working at all and domainkeys is intermittent. Here is the email I get from check-a...@verifier.port25.com. -- DomainKeys check details: -- Result: fail (bad signature) ID(s) verified: header.from=jack.d.mar...@magicwisp.com DNS record(s): private._domainkey.magicwisp.com. 1800 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyazGDWAMas 0jf4LFv2PU04CcshyL+637GwIDAQAB -- DKIM check details: -- Result: permerror (key dkim1._domainkey.mail.magicwisp.com doesn't exist) ID(s) verified: Canonicalized Headers: From:'20'Jack'20'Martin'20'jack.d.mar...@magicwisp.com'0D''0A' To:'20'check-au...@verifier.port25.com'0D''0A' Subject:'20'DKIM'20'Test'0D''0A' Date:'20'Mon,'20'1'20'Mar'20'2010'20'06:37:27'20'-0600'0D''0A' The domainkeys will pass once and fail once - that makes no sense to me. Here is the pertinent info: [r...@mail control]# ls -l | grep dkim drwxr-xr-x 2 qmailrqmail 4096 Feb 27 19:57 dkim [r...@mail control]# cd dkim [r...@mail dkim]# ls -l total 12 -rwxr-xr-x 1 qmailr qmail 392 Feb 27 19:48 global.key -rwxr-xr-x 1 qmailr qmail 129 Feb 27 19:53 public.txt -rwxr-xr-x 1 qmailr qmail 250 Jul 3 2009 signconf.xml [r...@mail dkim]# cat public.txt dkim1 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxANdYWKrEHivH6ZvF+lnqadWjy0Sc/vV6Tsb7Ey6kOE2zVWiaV8IUp+jS2jmKTkHNTwIDAQAB [r...@mail control]# cd domainkeys [r...@mail domainkeys]# ls -l total 8 drwxr-xr-x 2 root vchkpw 4096 Feb 14 12:03 magicwisp.com -rw-r--r-- 1 root root 0 Jan 17 17:13 public.txt drwxr-xr-x 2 root vchkpw 4096 Jan 17 17:15 tanwichita.com [r...@mail domainkeys]# cat public.txt [r...@mail domainkeys]# cd magicwisp.com [r...@mail magicwisp.com]# ls -l total 8 -r--r- 1 root vchkpw 396 Feb 14 12:03 private -rw-r--r-- 1 root vchkpw 142 Feb 14 12:03 public.txt [r...@mail magicwisp.com]# cat public.txt private._domainkey IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyazGDWAMas0jf4LFv2PU04CcshyL+637GwIDAQAB From my zone file: $ttl 30M magicwisp.com. IN SOA ns1.magicwisp.com. root.ns1.magicwisp.com. ( 2009020910 10800 3600 604800 5D ) @ IN NS ns1.magicwisp.com. magicwisp.com. IN MX 5 mail magicwisp.com. IN TXT v=spf1 a mx all mail.magicwisp.com. IN TXT v=spf1 a -all _domainkey.magicwisp.com. IN TXT o=-; r=postmas...@magicwisp.com private._domainkey IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyazGDWAMas0jf4LFv2PU04CcshyL+637GwIDAQAB dkim1 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxANdYWKrEHivH6ZvF+lnqadWjy0Sc/vV6Tsb7Ey6kOE2zVWiaV8IUp+jS2jmKTkHNTwIDAQAB 12.169.159.242.magicwisp.com. IN PTR mail.magicwisp.com magicwisp.com. 1800IN A 12.169.159.242 - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] DKIM/Domainkeys
On 03/01/2010 10:51 AM, sa...@magicwisp.com wrote: I have setup DKIM using Jakes videos, and the wiki for domainkeys. I have a problem. DKIM isn't working at all and domainkeys is intermittent. Here is the email I get from check-a...@verifier.port25.com. -- DomainKeys check details: -- Result: fail (bad signature) ID(s) verified: header.from=jack.d.mar...@magicwisp.com DNS record(s): private._domainkey.magicwisp.com. 1800 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyazGDWAMas 0jf4LFv2PU04CcshyL+637GwIDAQAB -- DKIM check details: -- Result: permerror (key dkim1._domainkey.mail.magicwisp.com doesn't exist) I think this last one will be your issue - it's expecting a record for dkim1._domainkey.mail.magicwisp.com Try adding a record for that and see if it resolves your issue. I believe someone else had a similar issue and posted on the list about this, maybe 3-4 months back. Search the archives. If you cannot find anything, I'll check my account as they may have email me directly. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] DKIM/Domainkeys
That did not seem to correct the problem. I am still getting the same error when testing DKIM. On 03/01/2010 10:51 AM, sa...@magicwisp.com wrote: I have setup DKIM using Jakes videos, and the wiki for domainkeys. I have a problem. DKIM isn't working at all and domainkeys is intermittent. Here is the email I get from check-a...@verifier.port25.com. -- DomainKeys check details: -- Result: fail (bad signature) ID(s) verified: header.from=jack.d.mar...@magicwisp.com DNS record(s): private._domainkey.magicwisp.com. 1800 IN TXT k=rsa; p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMkz2QL1kfW6aYgNIzfIdANn/mpttgsGyazGDWAMas 0jf4LFv2PU04CcshyL+637GwIDAQAB -- DKIM check details: -- Result: permerror (key dkim1._domainkey.mail.magicwisp.com doesn't exist) I think this last one will be your issue - it's expecting a record for dkim1._domainkey.mail.magicwisp.com Try adding a record for that and see if it resolves your issue. I believe someone else had a similar issue and posted on the list about this, maybe 3-4 months back. Search the archives. If you cannot find anything, I'll check my account as they may have email me directly. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com