On Saturday, April 06, 2019 04:55:58 PM Laura Smith wrote: > Hi, > > Am currently refreshing my perimeter mail infrastructure. > > The current state of affairs of DKIM signing looks pretty miserable! > > DKIMProxy seems to be abandonware since 2010 > > OpenDKIM seems to be going the way of abandonware too (last release in 2015 > and the bug tracker filling up). > > I've had a quick search on github for DKIM but can't find much of interest. > > We all know what software is like, you have to keep it fed and watered > otherwise it starts growing bugs (or worse). I'm not too keen on using > software of 2015 vintage. > > What is everybody using these days ? Or have I missed something in the > world of email and everyone's moved from DKIM to the Next Best Thing (TM). > > Looking forward to your suggestions
I've written https://launchpad.net/dkimpy-milter It is not yet particularly suitable for complex, multi-domain setups, but for smaller users works well (I use it - this message will be signed by it). Unlike any other released postfix option (the OpenDKIM beta has limited support) it supports both RSA and Ed25519 signing/verifying. It's configuration syntax is almost entirely compatible with OpenDKIM's (It supports a subset of OpenDKIM's options and has a few of it's own added to support Ed25519). I feel your pain. I wrote it in part so we could have multiple Ed25519 implementations for the IETF DCRUP working group and in part due to frustration with lack of progress with OpenDKIM. Scott K
