So I'm having trouble with getting OpenDKIM to sign my messages, but I'm hitting a wall as to what might causing it:
On Debian Jessie, with Postfix and OpenDKIM.
My /etc/opendkim.conf
:
Syslog yes
SyslogSuccess Yes
LogWhy yes
UMask 002
Canonicalization relaxed/simple
Mode sv
SubDomains no
#ADSPAction continue
AutoRestart Yes
AutoRestartRate 10/1h
Background yes
DNSTimeout 5
SignatureAlgorithm rsa-sha256
UserID opendkim:opendkim
Socket inet:12301@localhost
KeyTable refile:/etc/opendkim/KeyTable
SigningTable refile:/etc/opendkim/SigningTable
ExternalIgnoreList refile:/etc/opendkim/TrustedHosts
InternalHosts refile:/etc/opendkim/TrustedHosts
My /etc/opendkim/KeyTable
:
default._domainkey.example.com example.com:default:/etc/opendkim/keys/example.com/default.private
My /etc/opendkim/SigningTable
:
example.com default._domainkey.example.com
Tried the following variation on SigningTable, but that disabled my SMTP:
*@example.com default._domainkey.example.com
Have the following line uncommented in my /etc/default/opendkim
:
SOCKET="inet:12345@localhost
Have the following in my /etc/postfix/main/cf
:
# DKIM
milter_default_action = accept
milter_protocol = 6
smtpd_milters = inet:localhost:12345
non_smtpd_milters = inet:localhost:12345
This what opendkim-testkey -d example.com -s default -vvv
returns:
opendkim-testkey: using default configfile /etc/opendkim.conf
opendkim-testkey: checking key 'default._domainkey.example.com'
opendkim-testkey: key not secure
opendkim-testkey: key OK
There don't seem to be any errors in my logs relating to opendkim, but when I try to verify signing, mail-tester.com reports no DKIM signature, check-auth@verifier.port25.com returns an DKIM check: none.
Any help with pinpointing what I'm missing would be much appreciated. Thanks.