Sorry, for the previous mail. Hit the wrong button!
Here the excerpt from mail.log:
2024-12-24T08:25:12.029798-06:00 axum postfix/submission/smtpd[2060]:
warning: connect to Milter service local:opendkim/opendkim.sock: No such
file or directory
2024-12-24T08:25:12.668707-06:00 axum postfix/submission/smtpd[2060]:
Anonymous TLS connection established from
xxxxxxxxxxxxxx.xxxxxxx.de[2003:XXXXXXXX]:
58dd:61fa:7f72]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128
bits) key-exchange X25519 server-signature ECDSA (prime256v1)
server-digest SHA256
2024-12-24T08:25:14.437145-06:00 axum postfix/submission/smtpd[2060]:
6A6F348262: client=pxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx[2003:XXXXXXXX],
sasl_m
ethod=PLAIN, sasl_username=xx...@meinedomain.de
2024-12-24T08:25:14.719321-06:00 axum postfix/cleanup[2071]: 6A6F348262:
message-id=<769f2088-c0a4-4905-a1aa-433b580f0...@meinedomain.de>
2024-12-24T08:25:14.740324-06:00 axum opendkim[1028]: 6A6F348262:
DKIM-Signature field added (s=default, d=meinedomain.de)
2024-12-24T08:25:14.834956-06:00 axum postfix/qmgr[1531]: 6A6F348262:
from=<x...@meinedomain.de>, size=1005, nrcpt=1 (queue active)
2024-12-24T08:25:14.903476-06:00 axum postfix/amavis/smtp[2072]: connect
to 127.0.0.1[127.0.0.1]:10026: Connection refused
A merry X-mas to you!
Andreas
Am 24.12.2024 um 16:04 schrieb Andreas Kuhlen via Postfix-users:
Hi Matus,
As suggested by Wietse and you, I want to add the DKIM signature to
amavis in conjunction with OpenDKIM, but I'm not yet where I need to
be with the configuration.
I manage to get a signature added, but there are problems with the
socket. The following is configured in /etc/opendkim.conf:
# Socket for the MTA connection (required). If the MTA is inside a
chroot jail,
# it must be ensured that the socket is accessible. In Debian, Postfix
runs in
# a chroot in /var/spool/postfix, therefore a Unix socket would have
to be
# configured as shown on the last line below.
#Socket local:/run/opendkim/opendkim.sock
#Socket inet:8891@localhost
#Socket inet:8891
#Socket local:/var/spool/postfix/opendkim/opendkim.sock
Socket inet:8892@localhost
And in the /etc/postfix/main.cf file:
# Milter configuration
milter_default_action = accept
milter_protocol = 6
smtpd_milters = local:opendkim/opendkim.sock,
local:opendmarc/opendmarc.sock, inet:127.0.0.1:8892
non_smtpd_milters = local:opendkim/opendkim.sock,
local:opendmarc/opendmarc.sock, inet:127.0.0.1:8892
But I get error messages like this one in the mail.log:
Am 24.12.2024 um 15:44 schrieb Matus UHLAR - fantomas via Postfix-users:
On 24.12.24 09:08, Andreas Kuhlen via Postfix-users wrote:
I have to correct myself. If I only add the no_milters here, a DKIM
signature is added and the header check also works, it looks like,
but for the body is reported:
127.0.0.1:10025 inet n - n - - smtpd
-o syslog_name=postfix/10025
[ ... ]
-o
receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_address_mappings,*no_milters*
Authentication-Results: mx.google.com;
dkim=passheader.i=@unimatrix030.de header.s=default
header.b="SD5q/dfp";
*dkim=neutral (body hash did not verify)
header.i=@unimatrix030.de header.s=default header.b=kyrK6Z3o;*
Perhaps I should test whether I let amavis handle the DKIM?
Yeah, this should help.
On systems with both amavis and opendkim I use amavis to dkim-sign.
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
