On 7/1/21 9:11 PM, Onyeibo wrote:
The email from my VPS arrives at the organization's server and passes
authentication (including SPF/DKIM/DMARC checks) If the address is not
a mailing list, dovecot delivers the email to local/virtual accounts
without errors. It is all fine for regular destinations. If the address
belongs to a mailing list, Mailman receives the email and includes it
in the archives. Something goes wrong at this stage (i.e. when Mailman
begins to send copies to subscribers). The log records the following:
Jul 01 11:51:35 mail.organization.com opendkim[663]: 40D84274532: no
signing table match for 'onye...@mydomain.com' Jul 01 11:51:35
mail.organization.com opendmarc[826730]: 40D84274532: mydomain.com fail
It appears the mail server hosting Mailman on the other end wants to
sign my email all over again before sending out copies to the list
subscribers. The signing fails for obvious reasons. The host cannot
possibly have signing keys for every subscribed domain on the list.
The result is that Mailman archives an email that subscribers never
see.
The Mailman server is trying to DKIM sign the outgoing mail, but
opendkim on that server is misconfigured. It should have
SenderHeaders List-Post,Sender,From
in it's opendkim.conf so that it signs list mail with the list's domain.
See the MAILING LISTS section near the bottom of
http://www.opendkim.org/opendkim-README
--
Mark Sapiro <m...@msapiro.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan
------------------------------------------------------
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
https://mail.python.org/archives/list/mailman-users@python.org/
