Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [opendkim]

Open source implementation of the DKIM (Domain Keys Identified Mail). The capabilities include signing and verifying DKIM signature of the email.

OpenDKIM is an open source implementation of the (Domain Keys Identified Mail) sender authentication system standardized by the IETF (RFC6376). The project started from a code fork of version 2.8.3 of the open source dkim-milter package,

OpenDKIM capabilities was including signing and verifying DKIM signature of the email. The package consists of a library that implements the DKIM service and a milter-based filter application that can plug in to any milter-aware MTA such as and .

The documentation of command line options can be found in this page.
The documentation of opendkim.conf configuration file can be found in this page.

154 questions
3
votes
1 answer

OpenDKIM milter with Postfix

I just configured opendkim and postfix and it is supossed to be signing my emails but it doesn't. I used /usr/sbin/opendkim-testkey to test the keys and it seems to be ok with them but the mails I send to check-auth@verifier.port25.com keep…
Asier Paz
  • 133
  • 1
  • 6
3
votes
1 answer

Deprecation of RSA-SHA-1 in DKIM keys?

I recently noticed that opendkim on my mail server is objecting to DKIM signatures from a client, saying their key is insecure. It may be that that's due to lack of secure DNS (confirmation?) but I also noticed that the signing algorithm is shown…
mc0e
  • 5,786
  • 17
  • 31
3
votes
2 answers

OpenDKIM - cannot determine host's domain name, so skipping default key generation

I've just set up OpenDKIM on my CentOS 6 server but keep getting the following warning each time I start the service: Cannot determine host's domain name, so skipping default key generation. I have my server's hostname and domain name set up in…
Zishan Neno
  • 505
  • 1
  • 6
  • 14
3
votes
1 answer

Sendmail authenticating with DKIM but Roundcube is not authenticating

So I have set up the mail server, Roundcube, and Sendmail both work as expected. but many of my emails were going to spam in Gmail and others, so I was setting up the DKIM auth and it was successful. [Side Note] for some reason, I set it up so SMTP…
Ryan Vogel
  • 41
  • 5
3
votes
0 answers

Cannot start opendkim service, but command line works fine

Good morning.. I've read about 15 different guides on setup with DKIM and Sendmail signing on ubuntu 18.04 and for some reason I cannot get the service to start, yet command line works fine /etc/opendkim.conf AutoRestart …
Dennis
  • 31
  • 4
3
votes
1 answer

OpenDKIM won't start: "opendkim: milter socket must be specified"

I'm trying to setup a server using postfix, dovecot, amavis and opendkim for signing. OpenDKIM won't start, here is the output of journalctl -xe, after stopping and starting opendkim: Jul 21 21:54:17 mail systemd[1]: Starting OpenDKIM DomainKeys…
UnlegitApple
  • 33
  • 1
  • 4
2
votes
0 answers

DKIM - many subdomains without multiple txt records

I've been having trouble with opendkim, figuring out how to best create records for multiple subdomains. I've tried using wildcards to cover all of the subdomains and wasn't able to get it working. I settled on using a single key for all of my…
johnramsden
  • 131
  • 1
  • 4
2
votes
1 answer

OpenDMARC with multiple MX: correct setup for trust between servers

There are many tutorials on how to setup OpenDMARC on your favorite flavor of Linux, but they all focus on single server configurations. My goal was to keep backup secondary MX servers, but enforce RejectFailures true for DMARC p=reject to be…
Esa Jokinen
  • 43,252
  • 2
  • 75
  • 122
2
votes
1 answer

Opendkim: fail (signature doesn't verify)

I had generated my public and private key using opendkim-genkey: opendkim-genkey -s mail -d example.com It is supposed to be linked in the KeyTable file: /etc/opendkim$ cat KeyTable mail._domainkey.example.com…
Cod1ngFree
  • 164
  • 2
  • 10
2
votes
2 answers

Opendkim doesn't sign emails sending from external clients

I've setup opendkim with my sendmail and it looks like everything works correctly, but it signs only those messages that sent locally (from webmail client or automatic subscriptions). when I try to send message using email-client (e.g. The Bat),…
heximal
  • 175
  • 1
  • 8
2
votes
3 answers

OpenDKIM milter not signing relayed mail

I'm using OpenDKIM to sign mail on my Postfix server. It works as intended when sending with SMTPS from it's origin domain (let's say example.com). However, mail set out from SMTP clients on the LAN are not being signed. Said clients do not have…
Isabell Cowan
  • 123
  • 1
  • 8
2
votes
1 answer

dkim verification keeps failing bad signature

My DKIM verification keeps failing, and I can't figure out why. It's signed though, but wrong. When I check domain and selector it turns out as valid, so problem is with signing. Here is a dump of one test…
Aleksandar Pavić
  • 382
  • 2
  • 7
  • 18
2
votes
3 answers

How do I modify SELinux to allow OpenDKIM to write to /var/tmp?

I tried this answer (https://serverfault.com/a/744756/123651) but it still gives an error. Jan 7 23:56:33 ip-172-31-15-65 opendkim[24223]: AF15521407: dkim_eoh(): resource unavailable: can't create temporary file at…
Chloe
  • 1,094
  • 4
  • 16
  • 34
2
votes
0 answers

Gmail blocking e-mail from my personal domain

For some reason Gmail has started blocking e-mail from my domain (flanigan.net). I have had DKIM (opendkim), DMARC (opendmarc), and SPF implemented for some time. I am not on any of the SPAM or issues list that I can find. I have no history of bad…
David
  • 43
  • 3
2
votes
0 answers

Something is resetting my opendkim files (KeyTable and SigningTable)

Something is regularly resetting my /etc/opendkim/KeyTable and /etc/opendkim/SigningTable files. I have to manually re-edit them and restart opendkim every time... How to find out what is resetting them and how to stop it?
leyou
  • 121
  • 2
1 2
3
10 11