klappt jetzt alles, war ein fehler beim anlegen der TXT record
Hallo Forum
ich versuche seit Stunden mein DKIM richtig zu konfigurieren, leider komme ich hier nicht mehr weiter ...
Fehlermeldung:
grep -i dkim /var/log/mail.log
Code: Select all
Feb 4 17:58:33 host1 opendkim[5645]: 1FA3F72ABE: no signature data
und
Feb 4 18:12:13 host1 opendkim[5645]: DF64C72ABE s=20120113 d=gmail.com SSL error:04077068:rsa routines:RSA_verify:bad signature
dk.elandsys.com DKIM check
Code: Select all
DKIM Signature validation: pass
DKIM Author Domain Signing Practices: query failed
Authentication-Results: mx.elandsys.com; dkim=pass
reason="1024-bit key; insecure key"
header.d=domain.tld header.i=@domain.tld header.b=tnAMVA3R;
dkim-adsp=pass
OS: Debain Squeeze
ich bin nach folgendem Tut. vorgeangen:
http://blog.tjitjing.com/index.php/2012/03/guide-to-install-opendkim-for-multiple-domains-with-postfix-and-debian.html
/etc/opendkim.conf
Code: Select all
# Log to syslog
Syslog yes
# Required to use local socket with MTAs that access the socket as a non-
# privileged user (e.g. Postfix)
UMask 002
# Sign for example.com with key in /etc/mail/dkim.key using
# selector '2007' (e.g. 2007._domainkey.example.com)
Domain *
#KeyFile /etc/mail/dkim.key
#Selector 2007
# Commonly-used options; the commented-out versions show the defaults.
#Canonicalization simple
#Mode sv
#SubDomains no
#ADSPDiscard no
KeyTable /etc/opendkim/KeyTable
SigningTable /etc/opendkim/SigningTable
ExternalIgnoreList /etc/opendkim/TrustedHosts
InternalHosts /etc/opendkim/TrustedHosts
ich verwende einen externen DNS service
dort habe ich folgenden TXT entry angelegt:
Code: Select all
Domain = default._domainkey
Typ = TXT
Wert = v=DKIM1; g=*; k=rsa; p=MIGfMA0G........QAB
Code: Select all
default._domainkey IN TXT "v=DKIM1; g=*; k=rsa; p=MIGfM.....QAB" ; ----- DKIM default for xxx