On Mon, Oct 30, 2023 at 10:06:46AM +0100, Jens Hoffrichter via Postfix-users
wrote:
> We are looking into implementing DKIM signing for one of our services,
> and there are multiple ways to implement that.
>
> So far I have found that you can do it with opendkim and amavis - any
> recommendation for one or the other, or maybe something completely
> different I haven't found yet?
Both OpenDKIM and dkimpy-milter work reasonably well, but the former is
IIRC no longer actively maintained. Note, though have similar
configuration formats, they're not quite identical. Where the
OpenDKIM signers file wants:
domain keyname
the opendkimpy-milter wants:
*@domain keyname
Scott Kitterman, when he gets around to reading this thread will I hope
have more to say the subject.
Though dkimpy-milter is likely the more future-proof choice, perhaps
OpenDKIM is slightly more polished at present, be it also dated (
lacking some of the newer algorithms).
For signing, lack of bleeding-edge algorithms is less important, so if
you're not also validating, OpenDKIM would be sufficient.
--
Viktor.
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
