Hello,
I'm running postfix 2.5.9 on CentOS 5.3. I'm also running
amavisd-new 2.6.4. I'm wanting to implement dkim. I've got the key already
published in dns.
I was originally thinking smtpd proxy and had set up dkimproxy, but
that required opening up port 587 and changing my existing postfix setup so
that idea got dropped. I'm using amavisd-new as an after-queue content
filter with the content_filter option in main.cf and amavisd-new startup
lines in master.cf.
I've read rfc4871 on dkim and although confusing in parts i
took a shot at it.
So, if i understand things right in amavisd.conf for my first domain
i should have:
# signing domain selector private key options # ------------- --------
---------------------- ----------
dkim_key('example.com', 'selector', '/var/db/dkim/example.com.key',
v=>'dkim1', a=>'rsa-sha1,rsa-sha256', c=>'"simple/simple", d=>'example.com',
h=>'sha256', s=>'selector');
Do i have everything right/all included or did i miss something? For my
public key in dns should the options be:
v="DKIM1"; h="sha256;sha1"; k=rsa; t=s; p=Base64Key;
I'm hoping i'm getting these settings right. I generated the private key
with openssl genrsa with a keysize of 1024 did i have to specify an
algorithm?
Thanks.
Dave.
