On Fri, Jan 8, 2021 at 2:22 AM Brandon Long via mailop <mailop@mailop.org> wrote: > > We do still allow administrators to create 1024 bit DKIM keys because > when we tried to change it, a large number of admins and the web-based DNS > admin consoles they used couldn't handle the larger keys. That was years ago, > though, so I don't know what the current status of those consoles is.
We still get a non-zero amount of pushback when we hand client a DNS zone containing their 2048-bit DKIM key, with the same old reason, they can't make it work because it's too big to paste into a single DNS TXT record and they can't figure out how to work around it (or their tool won't do it for them). I've taken to including links to FAQs that tell people how to break up a long DKIM TXT record. Tools do still need to get better at just handling this automatically and easily. -- Al Iverson // Wombatmail // Chicago Deliverability: https://spamresource.com DNS Tools: https://xnnd.com _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
