openDKIM - no signature data

fulltilt
Posts: 356
Joined: 2006-08-27 02:06

openDKIM - no signature data

Post by fulltilt »

### edit ###
klappt jetzt alles, war ein fehler beim anlegen der TXT record

Hallo Forum ;-)
ich versuche seit Stunden mein DKIM richtig zu konfigurieren, leider komme ich hier nicht mehr weiter ...

Fehlermeldung:
grep -i dkim /var/log/mail.log

Code: Select all

Feb  4 17:58:33 host1 opendkim[5645]: 1FA3F72ABE: no signature data

und

Feb  4 18:12:13 host1 opendkim[5645]: DF64C72ABE s=20120113 d=gmail.com SSL error:04077068:rsa routines:RSA_verify:bad signature


dk.elandsys.com DKIM check

Code: Select all

DKIM Signature validation: pass
DKIM Author Domain Signing Practices: query failed
Authentication-Results: mx.elandsys.com; dkim=pass
        reason="1024-bit key; insecure key"
        header.d=domain.tld header.i=@domain.tld header.b=tnAMVA3R;
        dkim-adsp=pass


OS: Debain Squeeze

ich bin nach folgendem Tut. vorgeangen:
http://blog.tjitjing.com/index.php/2012/03/guide-to-install-opendkim-for-multiple-domains-with-postfix-and-debian.html

/etc/opendkim.conf

Code: Select all

# Log to syslog
Syslog                  yes
# Required to use local socket with MTAs that access the socket as a non-
# privileged user (e.g. Postfix)
UMask                   002

# Sign for example.com with key in /etc/mail/dkim.key using
# selector '2007' (e.g. 2007._domainkey.example.com)
Domain                  *
#KeyFile                /etc/mail/dkim.key
#Selector               2007

# Commonly-used options; the commented-out versions show the defaults.
#Canonicalization       simple
#Mode                   sv
#SubDomains             no
#ADSPDiscard            no
KeyTable           /etc/opendkim/KeyTable
SigningTable       /etc/opendkim/SigningTable
ExternalIgnoreList /etc/opendkim/TrustedHosts
InternalHosts      /etc/opendkim/TrustedHosts


ich verwende einen externen DNS service
dort habe ich folgenden TXT entry angelegt:

Code: Select all

Domain = default._domainkey
Typ = TXT
Wert = v=DKIM1; g=*; k=rsa; p=MIGfMA0G........QAB


Code: Select all

default._domainkey IN TXT "v=DKIM1; g=*; k=rsa; p=MIGfM.....QAB" ; ----- DKIM default for xxx
Top