On 12/05/2012 04:16, Stephen Guglielmo wrote:
Hey,
I have Amavis-new setup with Postfix, ClamAV, and spamassassin. I have
it verifying and signing emails using dkim.
I noticed that when I send myself an email from an off-server account,
amavis adds a dkim signature to that email, then maildrop delivers it.
An example:
This is in the headers of an email sent to my server running
amavis-new, from a third party email provider.
Authentication-Results: domain.tld (amavisd-new);
dkim=pass (1024-bit key) reason="pass (just generated, assumed good)"
header.d=domain.tld
This is the result of the source(from) domain(which is domain.tld) DKIM
signature verification at domain.tld.
So as you can see the from and to domain are the same. It's better to
test with mails from other domains.
DKIM-Signature: v=1; a=rsa-sha256;
c=relaxed/simple; d=domain.tld; h=
content-transfer-encoding:mime-version:content-language
:accept-language:message-id:subject:subject:date:date:from:from
:received:received:received:received; s=mail; t=1336784874; x=
1336871275; bh=24DdfY1P3gOE62wbCjpxXNsBrPKUqpfZxa5YiPHQpGM=; b=i
Ba+mVULBqvphBh+pisdQVIvy2Yw2Wc9t+Z95MhmqtKp6KuMcs+zw7U9wyVkvotIm
iK7/9fk4r92MYNpeIZuoBN84tXhdti/OO//pWJBWf2kT4i3OioGQlOhLtsgFVBE2
AuvFLRcBrPmYbL/TekAZLBEF8o6JO6fCSZdDsNuSTk=
Maybe your "off-server" sign too with DKIM?
As you can see, it says "just generated, assumed good." I want to sign
all outgoing mail, but what is the point of signing incoming mail as
well?
Well, is there a case when I send as authenticated user from outside
through this server, so I want to be signed my mails.
Is there a way to prevent this?
Thank you
Levi
