Kevin, > I even received an email from AXB that is very simple and failed DKIM tests. > > I also found that many emails where I'm disabling iframes, for example, > are what's causing my DKIM errors.
The key idea is to do the DKIM validation *before* sanitizing mail. > What's the easiest way with opendkim to basically pipe a message in mbox > format to see if it thinks the DKIM sig is valid? I want to compare if > a message filing DKIM through SA is passing with OpenDKIM. This is what I'm using - a one line shell command call to Mail::DKIM, piping a message on its stdin: $ perl -MMail::DKIM::Verifier -ne ' BEGIN{$dkim=Mail::DKIM::Verifier->new_object}; s/\r?\n\z/\015\012/; $dkim->PRINT($_); END{$dkim->CLOSE; printf("%s\n",$_->result_detail) for $dkim->signatures}' <sample.msg Mark