Hi Wietse!
Am 07.03.2025 um 22:13 schrieb Wietse Venema via Postfix-users:
roughnecks via Postfix-users:
Hello,
I would like to ask about opendkim and signing emails with postfix.
With the following configuration:
## OPENDKIM ##
smtpd_milters = inet:127.0.0.1:8891
non_smtpd_milters =
milter_protocol = 6
milter_default_action = accept
DKIM is correct for email sent by my clients, but if I send a message
from the server's shell, with /usr/sbin/sendmail, I get no signing at
all (dkim none)
So if I change:
non_smtpd_milters =
with:
non_smtpd_milters = $smtpd_milters
I get dkim for sendmail sent messages, but all the other mail gets *2*
signatures (this still looks "acceptable" since I see
Authentication-Results: gmx.net; dkim=pass but I'm not so sure).
If you are using content_filter then Postfix will receive messages
twice. The details to avoid signing twice depend on how your
content_filter is configured (how does it re-inject mail into
Postfix, what options are speicified in main.cf and in master.cf
that affect after-filter processing).
By far the easiest is to stop using content_filter and to use an
rspamd milter or the like do the signing.
By content_filter you mean amavis / spamassassin? Can the rspamd milter
do the dkim signing and replace amavis / spamassassin?
Is there a documentation on how to implement this?
Wietse
Kind regards
Andreas
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
