Gomes, Rich via Postfix-users:
> Perhaps I should re-phrase:
> 
> It was  presented in our DMARC portal as "a new selector was
> identified"

Anyone can send email with a fake DKIM-Signature: header that
identifies a legitimate email sending domain with the 'd=' tag, and
hat idebtifies a bogus selector with the 's=' tag. The path in DNS
for the public key is constructed by simple concatenation:

IN TXT $selector._domainkey.$domain.

This was reported wuth a RUF report (DKIM signature check failed,
new selector). This suggests that they don't have a matching public
key in the DNS.

        Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org

Reply via email to