> Can we get some DKIM documentation that isn't completely focused on > Postfix? ...
| Correction: you do have some choice there in a sendmail milter setup, | through the order of milters. Later milters see effects of earlier ones, | so an order like: verify, amavisd-new, sign would achieve the goal of | letting 'verify' see pristine message, then let amavisd add/edit header | and next have a signing milter sign it. I tried the following with sendmail + amavisd-milter + amavisd-new and it works as expected: (host.mc) dnl Verifiers: INPUT_MAIL_FILTER(`dk-filter-v', `S=inet:[EMAIL PROTECTED], T=R:2m') INPUT_MAIL_FILTER(`dkim-filter-v', `S=inet:[EMAIL PROTECTED], T=R:2m') dnl Content filter: INPUT_MAIL_FILTER(`amavisd-milter', `S=unix:/var/amavis/amavisd-milter.sock, F=T, T=S:10m;R:10m;E:10m') dnl Signers: INPUT_MAIL_FILTER(`dk-filter-s', `S=inet:[EMAIL PROTECTED], T=R:2m') INPUT_MAIL_FILTER(`dkim-filter-s', `S=inet:[EMAIL PROTECTED], T=R:2m') And starting milters as in my document, same as for Postfix. On FreeBSD with freshly updated ports that would be (rc.conf): # MAIL - DomainKeys mail signing milterdk_enable="YES" milterdk_uid='dkimfilter' milterdk_profiles="verifier signer" milterdk_verifier_socket='inet:[EMAIL PROTECTED]' milterdk_verifier_flags='-b v -H -d example.com' milterdk_signer_socket='inet:[EMAIL PROTECTED]' milterdk_signer_flags='-b s -H -c nofws -m ORIGINATING -d example.com -S xxx -s /var/db/domainkeys/mykey.pem' # MAIL - DKIM mail signing milterdkim_enable="YES" milterdkim_profiles="verifier signer" milterdkim_verifier_socket='inet:[EMAIL PROTECTED]' milterdkim_verifier_flags='-b v -d example.com' milterdkim_signer_socket='inet:[EMAIL PROTECTED]' milterdkim_signer_flags='-b s -c relaxed/simple -m ORIGINATING -d example.com -s xxx -k /var/db/domainkeys/mykey.pem -S rsa-sha1' I specified milterdk_uid to be the same as with milter_dkim, so that both milters may access the same signing key file, owned by UID dkimfilter and read-protected from group and world. Mark ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ AMaViS-user mailing list AMaViS-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
