Package: opendkim-tools Version: 2.11.0~alpha-9 Severity: important opendkim-testkey talks to DNS servers in the real world when verifying a key. The advantage of this is that you can get a full test and see what systems outside your control will see. The disadvantage of this is that you can't test a new key before deploying it live and you can't use a domain like example.com for test purposes.
I think that opendkim-testkey should have a command-line option to use the recursive server listed in /etc/resolv.conf and it would also be good if it could use an arbitrary recursive server specified on the command-line. -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages opendkim-tools depends on: ii libbsd0 0.8.3-1 ii libc6 2.24-9 ii libdb5.3 5.3.28-12+b1 ii libldap-2.4-2 2.4.44+dfsg-3 ii liblua5.1-0 5.1.5-8.1+b2 ii libmemcached11 1.0.18-4.1 ii libmemcachedutil2 1.0.18-4.1 ii libopendbx1 1.4.6-11 ii libopendkim11 2.11.0~alpha-9 ii librbl1 2.11.0~alpha-9 ii libssl1.1 1.1.0e-1 ii libunbound2 1.6.0-3 ii libvbr2 2.11.0~alpha-9 opendkim-tools recommends no packages. opendkim-tools suggests no packages. -- no debconf information
