Re: [Dspam-user] dspam break dk dkim signatures

Mon, 26 Dec 2011 11:14:47 -0800 

 On Mon, 26 Dec 2011 19:06:52 +0100, fakessh @ wrote:
> Le lundi 26 décembre 2011 09:27, Stevan Bajić a écrit :
>> On 25.12.2011 17:59, fakessh @ wrote:
>> > hello list
>> > hello guru
>> > hello Fu
>>
>> Hello fakessh,
>>
>> > i managed dspam with lmtp of after read the man page
>> > work well but dspam break dk dkim signatures
>> >
>> > all testimonials are welcome
>>
>> I am using DSPAM with DKIM signed message since ages and have no 
>> issue
>> at all. Can you provide an example where DSPAM has broken DKIM
>> signatures? In your subject you write about DK signatures and DKIM
>> signatures. Are you saying that DSPAM is breaking  both of them?
>
>
> this message is send with  broken signatures
>
 Which message? The one you sent? How can you know that it has broken 
 DomainKeys and DomainKeys Identified Mail signatures in it?


> my config is simple .
> use multiple content filter
> with amavisd and other tools for scanning the email
> master.cf
> # service for accepting messages FROM the DKIM signing proxy
> 127.0.0.1:10030 inet  n  -      n       -       10      smtpd
>     -o content_filter=lmtp:unix:/var/run/dspam/dspam.sock
> #     -o content_filter=
>     -o
> 
> receive_override_options=no_unknown_recipient_checks,no_header_body_checks
>     -o smtpd_helo_restrictions=
>     -o smtpd_client_restrictions=
>     -o smtpd_sender_restrictions=
>     -o smtpd_recipient_restrictions=permit_mynetworks,reject
>     -o mynetworks=127.0.0.0/8
>     -o smtpd_authorized_xforward_hosts=127.0.0.0/8
> #Pour les connexions à dspam :
> dspam      unix  n       -       n       -       -       lmtp
> #    -o lmtp_data_done_timeout=1200
> #    -o lmtp_send_xforward_command=yes
> #    -o disable_dns_lookups=yes
> #    -o max_use=20
>
 Usually one does a VERIFY of DomainKeys and/or DomainKeys Identified 
 Mail on the INBOUND and on the OUTBOUND you do SIGN. I however don't see 
 any signature in this mail. I know that SourceForge is removing the DKIM 
 signature of the original mail (which is IMHO the right thing to do) but 
 SourceForge is using SpamAssassin and they add various DKIM and/or DK 
 tokens in their X-Spam-Report. And I don't see that in mails coming from 
 you.

 All I see in the headers of mails coming from you is a huge mess of 
 scanning:

 Received: from localhost (localhost.localdomain [127.0.0.1])
        by ks37777.kimsufi.com (Postfix) with SMTP id 8EF9F5C626A
        for <dspam-user@lists.sourceforge.net>;
        Mon, 26 Dec 2011 19:07:51 +0100 (CET)
 X-SenderID: Sendmail Sender-ID Filter v1.0.0 ks37777.kimsufi.com
        <unknown-msgid>
 Authentication-Results: ks37777.kimsufi.com;
        sender-id=neutral header.from=m...@smtp.fakessh.eu;
        spf=neutral smtp.mfrom=m...@smtp.fakessh.eu
 Received: from ks37777.kimsufi.com (localhost.localdomain [127.0.0.1])
        by ks37777.kimsufi.com (Postfix) with ESMTP id 3C33B5C626E
        for <dspam-user@lists.sourceforge.net>;
        Mon, 26 Dec 2011 19:07:51 +0100 (CET)
 X-SenderID: Sendmail Sender-ID Filter v1.0.0 ks37777.kimsufi.com
        <unknown-msgid>
 Authentication-Results: ks37777.kimsufi.com;
        sender-id=neutral header.from=m...@smtp.fakessh.eu;
        spf=neutral smtp.mfrom=m...@smtp.fakessh.eu
 Received: from localhost (localhost.localdomain [127.0.0.1])
        by ks37777.kimsufi.com (Postfix) with ESMTP id 30FE55C626D
        for <dspam-user@lists.sourceforge.net>;
        Mon, 26 Dec 2011 19:07:51 +0100 (CET)
 X-Amavis-GeoIP: France Aquitaine Pau
 X-Amavis-GeoIP: France Aquitaine Pau
 X-Header-AntiAbuse: report abuse to postmas...@fakessh.eu
 X-Header-AntiAbuse: sender m...@smtp.fakessh.eu ml @smtp.fakessh.eu
        m...@smtp.fakessh.eu
 X-Header-AntiAbuse: client addr 90.55.253.129
 X-Header-AntiAbuse: client addr 90.55.253.129
 X-Header-AntiAbuse: primary hostname ks37777.kimsufi.com
 Received: from ks37777.kimsufi.com ([127.0.0.1])
        by localhost (ks37777.kimsufi.com [127.0.0.1]) (amavisd-new, port 
 10024)
        with LMTP id OuvsDh1uMpth for <dspam-user@lists.sourceforge.net>;
        Mon, 26 Dec 2011 19:07:41 +0100 (CET)
 X-My-Organisation: fakessh @
 X-SenderID: Sendmail Sender-ID Filter v1.0.0 ks37777.kimsufi.com
        <unknown-msgid>
 Authentication-Results: ks37777.kimsufi.com;
        sender-id=neutral header.from=m...@smtp.fakessh.eu;
        auth=pass (LOGIN); spf=neutral smtp.mfrom=m...@smtp.fakessh.eu
 Received: from [192.168.1.81] 
 (ABayonne-257-1-30-129.w90-55.abo.wanadoo.fr
        [90.55.253.129])
        (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
        (Client did not present a certificate)
        (Authenticated sender: fakessh)
        by ks37777.kimsufi.com (Postfix) with ESMTPSA id 6E2775C626A
        for <dspam-user@lists.sourceforge.net>;
        Mon, 26 Dec 2011 19:07:41 +0100 (CET)


 Things that you IMHO do wrong:
   scan 3 times for Sender-ID!
   scan 2 times with Amavisd-New
   check 2 times for SPF
   outbound DSPAM filtering

 


>
> 127.0.0.1:10037 inet  n -       n       -       -        smtpd
>   -o content_filter=
>   -o
> 
> receive_override_options=no_unknown_recipient_checks,no_header_body_checks
>   -o smtpd_helo_restrictions=
>   -o smtpd_client_restrictions=
>   -o smtpd_sender_restrictions=
>   -o smtpd_recipient_restrictions=permit_mynetworks,reject
>   -o mynetworks=127.0.0.0/8
>   -o smtpd_authorized_xforward_hosts=127.0.0.0/8
>
 What is that? The inbound used for/from DSPAM?


>
> for the sample to config of dspam
> use standard config
> work well with any issues
>
 What? I don't understand that. Could you rephrase that in proper 
 English?


> dspam it is unusable
> dspam broken dk dkim signatures
>
 Please do me a favour and disable DSPAM on your setup and send a 
 message to <check-a...@verifier.port25.com> and post the result you get 
 back. When I do that (with enabled DSPAM) then I get this back as 
 summary of the results:

 ==========================================================
 Summary of Results
 ==========================================================
 SPF check:          pass
 DomainKeys check:   neutral
 DKIM check:         pass
 Sender-ID check:    pass
 SpamAssassin check: ham


 I would like to see you getting a pass or neutral on DKIM/DomainKeys 
 without using DSPAM. And if possible send me a message in raw RFC 822 
 format showing a broken DKIM signature. I really would like to see that.



-- 
 Kind Regards from Switzerland,

 Stevan Bajić

------------------------------------------------------------------------------
Write once. Port to many.
Get the SDK and tools to simplify cross-platform app development. Create 
new or port existing apps to sell to consumers worldwide. Explore the 
Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join
http://p.sf.net/sfu/intel-appdev
_______________________________________________
Dspam-user mailing list
Dspam-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/dspam-user

Reply via email to