Good morning,
Thanks for the reply. Let me handle the issues one at a time. First the
"*", thats my paranoia, I know that it is a public key that is put out
there for all to read, but when paranoia takes hold you just go with the
flow. More importantly, you are exactly right that the key is broken up
into 4 lines. AT&T, our ISP has a 255 character length text field. Our
key text to publish was just over 300 characters and would truncate and
therefore fail when I used the AT&T text record tool to publish it. I
asked AT&T support to publish it for me, which they did and then they
promptly removed it because according to them it caused problems with
their server. I then found an internet posting (url lost in the mists
of time) on setting up DKIM which mentioned that if the public key was
too long it could be broken into smaller chunks enclosed in double
quotes and would be reconstructed when it was read. This was what I was
attempting and getting the results back which you have seen. Should I
remake the keys ( no reason for them to be any shorter). Any other
ideas? Obviously if I can't publish a key the server side issues won't
matter. As before I am your humble servant so any info you need please ask.
Thanks for the help,
Jim
Murray S. Kucherawy wrote:
Jim Maloney wrote:
I have set up DKIM-filter to work with sendmail and have obviously
missed something because my mail is not being signed. [...]
mail._domainkey.clubshop.com. IN TXT
( "k=rsa; t=y;"
"p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4Kz+5d4CuaGKRJAKg6vmaBKFJhs6I60c70yIQOj3NwHi"
"FIhlu0f/GJGGxSf21JY+VcHNjGcevXkSrpsnTeENF8CkcIyjduDhDsElkFprKTDqeIA50u9BCKkKla4cvzjET"
"XRw+6Ijc7bqtKxxOmE2l29K21NwZ********************" )
What's with all the "*"s?
mail._domainkey. TXT
"XRw+6Ijc7bqtKxxOmE2l29K21Nw******************** )" DELETE UPDATE
mail._domainkey. TXT "( k=rsa; t=y;" DELETE UPDATE
mail._domainkey. TXT
"p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4Kz+5d4CuaGKRJAKg6vmaBKFJhs6I60c70yIQOj3NwHi"
It looks like you've taken something that should be in one single TXT
record and spread it across four TXT records. You need to merge them
all into one record and reload your nameserver with the corrected data.
The verifying agent will not do that for you as the protocol specifies
that the reply should be all in one piece.
Tests:
sudo /usr/bin/dkim-testkey -d clubshop.com -k /var/db/dkim/mail.key.pem
-s mail
dkim-testkey: multiple DNS replies for `mail._domainkey.clubshop.com'
That confirms the error.
/var/log/maillog after mailing to [EMAIL PROTECTED]
Jul 29 11:14:12 outbound2 sendmail[5379]: m6TFEAij005379:
from=j.maloney, size=44, class=0, nrcpts=1,
msgid=<[EMAIL PROTECTED]>,
[EMAIL PROTECTED]
Jul 29 11:14:18 outbound2 sendmail[5380]: m6TFECvJ005380:
from=<[EMAIL PROTECTED]>, size=356, class=0, nrcpts=1,
msgid=<[EMAIL PROTECTED]>, proto=ESMTP,
daemon=MTA, relay=outbound2.clubshop.com [127.0.0.1]
Jul 29 11:14:28 outbound2 sendmail[5380]: m6TFECvJ005380: Milter
(dkim-filter): timeout before data read, where=body
This is odd; it suggests your filter was either hung or crashed. Do you
have any core dumps or other evidence that it died and restarted?
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
dkim-milter-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
begin:vcard
fn:James Maloney
n:Maloney;James
org:DHS Club, Inc.
email;internet:[EMAIL PROTECTED]
title:IT Director
x-mozilla-html:FALSE
version:2.1
end:vcard
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
dkim-milter-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dkim-milter-discuss
