klappt jetzt alles, war ein fehler beim anlegen der TXT record
Hallo Forum ;-)
ich versuche seit Stunden mein DKIM richtig zu konfigurieren, leider komme ich hier nicht mehr weiter ...
Fehlermeldung:
grep -i dkim /var/log/mail.log
Code: Select all
Feb 4 17:58:33 host1 opendkim[5645]: 1FA3F72ABE: no signature data
und
Feb 4 18:12:13 host1 opendkim[5645]: DF64C72ABE s=20120113 d=gmail.com SSL error:04077068:rsa routines:RSA_verify:bad signature
Code: Select all
DKIM Signature validation: pass
DKIM Author Domain Signing Practices: query failed
Authentication-Results: mx.elandsys.com; dkim=pass
reason="1024-bit key; insecure key"
header.d=domain.tld header.i=@domain.tld header.b=tnAMVA3R;
dkim-adsp=pass
ich bin nach folgendem Tut. vorgeangen:
http://blog.tjitjing.com/index.php/2012 ... ebian.html
/etc/opendkim.conf
Code: Select all
# Log to syslog
Syslog yes
# Required to use local socket with MTAs that access the socket as a non-
# privileged user (e.g. Postfix)
UMask 002
# Sign for example.com with key in /etc/mail/dkim.key using
# selector '2007' (e.g. 2007._domainkey.example.com)
Domain *
#KeyFile /etc/mail/dkim.key
#Selector 2007
# Commonly-used options; the commented-out versions show the defaults.
#Canonicalization simple
#Mode sv
#SubDomains no
#ADSPDiscard no
KeyTable /etc/opendkim/KeyTable
SigningTable /etc/opendkim/SigningTable
ExternalIgnoreList /etc/opendkim/TrustedHosts
InternalHosts /etc/opendkim/TrustedHosts
dort habe ich folgenden TXT entry angelegt:
Code: Select all
Domain = default._domainkey
Typ = TXT
Wert = v=DKIM1; g=*; k=rsa; p=MIGfMA0G........QAB
Code: Select all
default._domainkey IN TXT "v=DKIM1; g=*; k=rsa; p=MIGfM.....QAB" ; ----- DKIM default for xxx