openDKIM - no signature data

Posts: 356
Joined: 2006-08-27 02:06

openDKIM - no signature data

Post by fulltilt »

### edit ###
klappt jetzt alles, war ein fehler beim anlegen der TXT record

Hallo Forum ;-)
ich versuche seit Stunden mein DKIM richtig zu konfigurieren, leider komme ich hier nicht mehr weiter ...

grep -i dkim /var/log/mail.log

Code: Select all

Feb  4 17:58:33 host1 opendkim[5645]: 1FA3F72ABE: no signature data


Feb  4 18:12:13 host1 opendkim[5645]: DF64C72ABE s=20120113 SSL error:04077068:rsa routines:RSA_verify:bad signature DKIM check

Code: Select all

DKIM Signature validation: pass
DKIM Author Domain Signing Practices: query failed
Authentication-Results:; dkim=pass
        reason="1024-bit key; insecure key"
        header.d=domain.tld header.i=@domain.tld header.b=tnAMVA3R;

OS: Debain Squeeze

ich bin nach folgendem Tut. vorgeangen:


Code: Select all

# Log to syslog
Syslog                  yes
# Required to use local socket with MTAs that access the socket as a non-
# privileged user (e.g. Postfix)
UMask                   002

# Sign for with key in /etc/mail/dkim.key using
# selector '2007' (e.g.
Domain                  *
#KeyFile                /etc/mail/dkim.key
#Selector               2007

# Commonly-used options; the commented-out versions show the defaults.
#Canonicalization       simple
#Mode                   sv
#SubDomains             no
#ADSPDiscard            no
KeyTable           /etc/opendkim/KeyTable
SigningTable       /etc/opendkim/SigningTable
ExternalIgnoreList /etc/opendkim/TrustedHosts
InternalHosts      /etc/opendkim/TrustedHosts

ich verwende einen externen DNS service
dort habe ich folgenden TXT entry angelegt:

Code: Select all

Domain = default._domainkey
Typ = TXT
Wert = v=DKIM1; g=*; k=rsa; p=MIGfMA0G........QAB

Code: Select all

default._domainkey IN TXT "v=DKIM1; g=*; k=rsa; p=MIGfM.....QAB" ; ----- DKIM default for xxx