Hi, i have a small DKIM question. config files are at bottom of email.
I got it working but don't understand why ?
The one change i made to get it to work was add
137.99.0.0/16 to the TrustedHosts file.
So tests with from of x...@appmail.uconn.edu and x...@uconn.edu are getting
signed and I see it in the Postfix logs.
My question:
my prod servers(3 of them) smtp.uconn.edu allow authenticated users to send
over 465 and 587.
So they could come from any IP address in the world.
I assume all users are using a from address of x...@uconn.edu or
x...@yyy.uconn.edu.
Is it possible to get emails signed with DKIM ?
These are the 3 files i configured
SigningTable =
*@appmail.uconn.edu dkim1._domainkey.mta4.uits.uconn.edu
*@uconn.edu dkim1._domainkey.mta4.uits.uconn.edu
*@uits.uconn.edu dkim1._domainkey.mta4.uits.uconn.edu
KeyTable =
dkim1._domainkey.mta4.uits.uconn.edu
mta4.uits.uconn.edu:dkim1:/etc/opendkim/keys/uconn/dkim1.private
TrustedHosts =
127.0.0.1
137.99.0.0/16
::1
This is the opendkim.conf file =
PidFile /var/run/opendkim/opendkim.pid
Mode sv
Syslog yes
SyslogSuccess yes
LogWhy yes
UserID opendkim:opendkim
Socket inet:8891@localhost
Umask 002
SendReports yes
ReportAddress "UITS-SSG OpenDKIM" <ang...@uconn.edu>
SoftwareHeader yes
Canonicalization relaxed/simple
Selector dkim1
MinimumKeyBits 1024
KeyTable /etc/opendkim/KeyTable
SigningTable refile:/etc/opendkim/SigningTable
ExternalIgnoreList refile:/etc/opendkim/TrustedHosts
InternalHosts refile:/etc/opendkim/TrustedHosts
-ANGELO FAZZINA
UITS Service Manager:
Spam and Virus Prevention
Mass Mailing
G Suite/Gmail
ang...@uconn.edu
University of Connecticut, UITS, SSG, Server Systems
860-486-9075
