Hello,
currently I enable OpenDKIM vi main.cf :
# OpenDKIM
smtpd_milters = inet:127.0.0.1:8891
non_smtpd_milters = $smtpd_milters
milter_default_action = accept
Since that server is both MX and Submission for the mailbox domain I am
tempted to instead define those parameters via
-o key=value
in master.cf for the smtps / submission service.
Is that advisable or is it not a good idea?
I realize it would mean mail sent by the host itself via sendmail
command is not DKIM signed but I'm not really worried about that.
It appears that when e-mail is sent from a user to a mail list that is
set up in a way to break DKIM (as many are), the mail from the list to
the user that comes in via the MX on port 25 then gets signed again even
though it was technically sent by the list and not the user.
That itself probably isn't bad but I still don't like the idea of DKIM
signing happening on mail that comes in on port 25 even if the From:
header matches.
