I have two problems implementing DKIM on my server. The first one is
that the signatures that ASSP is putting on the messages appear to be
invalid. Sending a message to the DKIM tester autoresponder email
address at autorespond+dkim {at} dk.elandsys.com gets me the following:
DKIM Signature validation: fail (verification failed)
The Sourceforge mail list server reports the same thing:
-1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for
sender-domain
1.1 DKIM_ADSP_ALL No valid author signature,
domain signs all mail
-0.0 SPF_PASS SPF: sender matches SPF record
0.1 DKIM_SIGNED Message has a DKIM or DK signature,
not necessarily valid
0.0 MSGID_FROM_MTA_HEADER Message-Id was added by a relay
0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid
The DNS entries for the domain in question (hollsco.com) is:
alpha._domainkey.hollsco.com. IN TXT "k=rsa;
p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6fZtxDGHtFpSVXDzIPMuxHBebdfpH8j3u54wLKV8rXUpAQwurgcjlunFbVgvfkyyX+MzWylGZtCJUICIFGLK/Wph44PVQjagKYWrlLpAJ6vE6Kn6F0QhZbZzyjBhSR0YzNAz4QDFgnILqzzATVr2KUq4tXJ23nOHrNLr+QUNQJwIDAQAB;"
_adsp._domainkey.hollsco.com. IN TXT "dkim=all"
The appropriate entry in my dkimconfig.txt file is:
<hollsco.com>
<alpha>
Algorithm=rsa-sha1
Method=relaxed/relaxed
Headers=Message-ID:From:Subject:To:MIME-Version:Content-Type
KeyFile=d:/assp/certs/dkim_private_key_alpha.pem
Mode=DKIM
</alpha>
</hollsco.com>
The public key listed in the DNS entry is the same as the public key
that matches the private key specified in the configuration.
The second problem I'm encountering is this: Email being sent from my
mail client is having the DKIM signature added normally. This email
is being sent to the listenPort2 port, and EnforceAuth is enabled.
I have a web server that sends mail as well. It also connects to the
same address and port as my mail client at home, and it authorizes
just like the client. However, NONE of the mail being sent from the
web server has the DKIM signature added. The only difference between
the two emails is that the web server email is being sent through a
secondary mail server, and then forwarded on to ASSP.
Is ASSP looking at the "Received:" header, and if it sees more than
one, not adding a DKIM signature? Or is there something else that
could be stopping it from adding a signature?
------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
Assp-test mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-test
