2012/3/14 Garvice Eakins <garviceeak...@gmail.com>: > Stefano, > > I am working on an email portion to a cloud based service with > multi-tenancy interaction. > Currently we are using the domain high5work.com which resolves > to 173.10.69.157 > Our plan is to give each subscriber of our system a subdomain. eg. > somecompany.high5work.com > I've setup an MX record so that *.high5work.com resolves to the above IP > for SMTP
Here is your problem: # host -a 173.10.69.157 ;; ANSWER SECTION: 157.69.10.173.in-addr.arpa. 3600 IN PTR 173-10-69-157-BusName-Washington.hfc.comcastbusiness.net. Find out how to change this PTR to somecompany.high5work.com or high5work.com or anything that doesn't sound like a dynamic ip or "impersonal ip" and then use that name in the helloname configuration (don't remember the right configuration name in James 3 right now). > I also just went and added an SPF record. > > Two questions, Based on how we are using the domain and subdomains, how do > I ensure the IP reverse host is setup correctly An IP can only have 1 reverse. And you have to use that name during "helo " salutation in smtp conversations. You can use different domain for the "mail from"/sender and whatever, but the "helo" have to match the PTR. > and every time we add a sub domain are we going to need to build a Rep for > it or will the rep from the domain carry to it's children? What's "rep" ? Stefano > On Wed, Mar 14, 2012 at 8:20 AM, Eric Charles > <eric.char...@u-mangate.com>wrote: > >> Forget information on keystore. I was on a s/mime trip, not the dkim >> one... and see Stefano answer. >> >> Eric >> >> >> On 14/03/12 15:32, Eric Charles wrote: >> >>> I saw the DKIM Mailet and semi understand what is taking place. >>>> My question is how do I create the Private keys using james. >>>> >>> >>> You need a keystore, see >>> http://james.apache.org/**server/3/config-ssl-tls.html<http://james.apache.org/server/3/config-ssl-tls.html>where >>> we describe >>> the way to achieve this for SSL/TLS. The generation process is similar. >>> You need to generate a keypair (public and private) and paste the >>> exported private key to the jdkim mailet configuration (we could do >>> better IMHO, the privacy is no more there...). >>> >>> I've found several tools to create a private key using the message >>>> contents >>>> and a supplied public key. >>>> >>> >>> I use KeyStore Explorer >>> (http://www.lazgosoftware.com/**kse/index.html<http://www.lazgosoftware.com/kse/index.html> >>> ) >>> >>> However they are adding them before james processes the message, and >>>> so the >>>> keys are getting tampered with by james and returning invalid. >>>> >>> >>> >> ------------------------------**------------------------------**--------- >> To unsubscribe, e-mail: >> server-user-unsubscribe@james.**apache.org<server-user-unsubscr...@james.apache.org> >> For additional commands, e-mail: >> server-user-help@james.apache.**org<server-user-h...@james.apache.org> >> >> --------------------------------------------------------------------- To unsubscribe, e-mail: server-user-unsubscr...@james.apache.org For additional commands, e-mail: server-user-h...@james.apache.org
