Operations grimoire/Mail/DKIM

From Nasqueron Agora
< Operations grimoire‎ | Mail
Revision as of 08:28, 20 January 2017 by Dereckson (talk | contribs) (Created page with "== Add a domain == To create a key with <code>unium</code> as DKIM selector for <domain.tld>: <source lang="console"> $ mkdir /etc/opendkim/keys/domain.tld $ cd /etc/opendkim/...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

📕📁📜 Old technical information :: content warning

⌛ This Nasqueron Operations Grimoire page hasn't been updated for a long time.

☣ As our infrastructure evolves quickly, there is a good chance this information is outdated or now inaccurate. Be careful and consider update it.

➡️ To assert the information is still up-to-date or not, you can check the history of the relevant role in our Operations repository.

Add a domain

To create a key with unium as DKIM selector for <domain.tld>: 

$ mkdir /etc/opendkim/keys/domain.tld
$ cd /etc/opendkim/keys/domain.tld
$ opendkim-genkey -s unium -d domain.tld
$ chown opendkim unium.private
$ cd /etc/opendkim
$ make clean all

Test

Send a mail from to another mail server.

You should see a DKIM pass.

You can also from a mailbox for this domain send a mail to check-auth@verifier.port25.com

Troubleshooting

Can't load key from … Permission denied

Keys must belong to opendkim user. 

$ chown opendkim /etc/opendkim/keys/*/*.private

DKIM must succeed: as long as this isn't fixed, Postfix won't send mail for this domain.

Retrieved from "https://agora.nasqueron.org/index.php?title=Operations_grimoire/Mail/DKIM&oldid=624"