[pfx] OpenDKIM is added twice

Mon, 23 Dec 2024 15:39:12 -0800 

Hello,
I am running my Postfix server with Amavis, Spamassassin, Clamav and have added a configuration for OpenDKIM, OpenDMARC and SPF. Sending and receiving mail is working satisfactorily so far. However, I noticed today that a DKIM signature field is inserted twice when I send a mail. The verification is considered valid because it says in the mail headers: 

ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@mandogo.de header.s=default header.b=evC8mFsT;
       dkim=pass header.i=@mandogo.de header.s=default header.b=D1X9Qv3a;

It's not normal for it to be signed twice, or am I wrong?

Milter Config in main.cf:

# Milter configuration
milter_default_action = accept
milter_protocol = 6

smtpd_milters = local:opendkim/opendkim.sock, 
local:opendmarc/opendmarc.sock, local:spamass/spamass.sock

non_smtpd_milters = $smtpd_milters

Excerpt from mail.log:


2024-12-24T00:10:00.816329+01:00 mail postfix/cleanup[293011]: 
B812C40130: message-id=<ee0689b3-353f-4635-b845-0db2754cf...@mandogo.de>
2024-12-24T00:10:00.832739+01:00 mail opendkim[1016]: B812C40130: 
DKIM-Signature field added (s=default, d=mandogo.de)
2024-12-24T00:10:00.844192+01:00 mail spamd[147842]: spamd: connection 
from localhost [::1]:57588 to port 783, fd 5
2024-12-24T00:10:00.844682+01:00 mail spamd[147842]: spamd: using 
default config for xxxxxxx...@gmail.com: 
/var/vmail/gmail.com/xxxxxxxxxx/spamassassin/user_prefs
2024-12-24T00:10:00.847928+01:00 mail spamd[147842]: spamd: processing 
message <ee0689b3-353f-4635-b845-0db2754cf...@mandogo.de> for 
xxxxxxx...@gmail.com:2000
2024-12-24T00:10:02.599103+01:00 mail spamd[147842]: spamd: clean 
message (-1.2/5.0) for xxxxxxx...@gmail.com:2000 in 1.8 seconds, 1311 bytes.
2024-12-24T00:10:02.601337+01:00 mail spamd[147842]: spamd: result: . -1 
- ALL_TRUSTED,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF 
scantime=1.8,size=1311,user=xxxxxxx...@gmail.com,uid=2000,required_score=5.0,rhost=localhost,raddr=::1,rport=57588,mid=<ee0689b3-353f-4635-b845-0db2754cf...@mandogo.de>,autolearn=ham 
autolearn_force=no
2024-12-24T00:10:02.646179+01:00 mail postfix/qmgr[292891]: B812C40130: 
from=<t...@mandogo.de>, size=895, nrcpt=1 (queue active)

2024-12-24T00:10:02.872862+01:00 mail spamd[810]: prefork: child states: II

2024-12-24T00:10:04.775797+01:00 mail postfix/10025/smtpd[293018]: 
connect from localhost[127.0.0.1]
2024-12-24T00:10:04.780845+01:00 mail opendmarc[1019]: ignoring 
connection from localhost
2024-12-24T00:10:04.807791+01:00 mail postfix/10025/smtpd[293018]: 
C504440131: client=localhost[127.0.0.1]
2024-12-24T00:10:04.814213+01:00 mail postfix/cleanup[293011]: 
C504440131: message-id=<ee0689b3-353f-4635-b845-0db2754cf...@mandogo.de>
2024-12-24T00:10:04.823878+01:00 mail opendkim[1016]: C504440131: 
DKIM-Signature field added (s=default, d=mandogo.de)
2024-12-24T00:10:04.833123+01:00 mail postfix/10025/smtpd[293018]: 
disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 
commands=5
2024-12-24T00:10:04.833686+01:00 mail postfix/qmgr[292891]: C504440131: 
from=<t...@mandogo.de>, size=1872, nrcpt=1 (queue active)


The master.cf config:

smtp       inet  n       -       y       -       1 postscreen
smtpd      pass  -       -       y       -       -       smtpd
dnsblog    unix  -       -       y       -       0       dnsblog
tlsproxy   unix  -       -       y       -       0       tlsproxy
submission inet  n       -       y       -       -       smtpd
    -o syslog_name=postfix/submission
    -o smtpd_tls_security_level=encrypt
    -o smtpd_tls_wrappermode=no
    -o smtpd_sasl_auth_enable=yes
    -o smtpd_relay_restrictions=permit_sasl_authenticated,reject

    -o 
smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject

    -o smtpd_sasl_type=dovecot
    -o smtpd_sasl_path=private/auth
    -o content_filter=smtp-amavis:[127.0.0.1]:10026
smtps      inet  n       -       y       -       -       smtpd
    -o syslog_name=postfix/smtps
    -o smtpd_tls_wrappermode=yes
    -o smtpd_sasl_auth_enable=yes
    -o smtpd_relay_restrictions=permit_sasl_authenticated,reject

    -o 
smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject

    -o smtpd_sasl_type=dovecot
    -o smtpd_sasl_path=private/auth
    -o content_filter=smtp-amavis:[127.0.0.1]:10026
pickup     unix  n       -       y       60      1       pickup
cleanup    unix  n       -       y       -       0       cleanup
qmgr       unix  n       -       n       300     1       qmgr
tlsmgr     unix  -       -       y       1000?   1       tlsmgr
rewrite    unix  -       -       y       -       - trivial-rewrite
bounce     unix  -       -       y       -       0       bounce
defer      unix  -       -       y       -       0       bounce
trace      unix  -       -       y       -       0       bounce
verify     unix  -       -       y       -       1       verify
flush      unix  n       -       y       1000?   0       flush
proxymap   unix  -       -       n       -       -       proxymap
proxywrite unix  -       -       n       -       1       proxymap
smtp       unix  -       -       y       -       -       smtp
relay      unix  -       -       y       -       -       smtp
    -o syslog_name=postfix/$service_name
showq      unix  n       -       y       -       -       showq
error      unix  -       -       y       -       -       error
retry      unix  -       -       y       -       -       error
discard    unix  -       -       y       -       -       discard
local      unix  -       n       n       -       -       local
virtual    unix  -       n       n       -       -       virtual
lmtp       unix  -       -       y       -       -       lmtp
anvil      unix  -       -       y       -       1       anvil
scache     unix  -       -       y       -       1       scache
postlog    unix-dgram n  -       n       -       1       postlogd
uucp       unix  -       n       n       -       -       pipe flags=Fqhu
    user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)

policyd-spf unix -       n       n       -       0       spawn 
user=policyd-spf

    argv=/usr/bin/policyd-spf
smtp-amavis unix -       -       n       -       4       smtp
    -o syslog_name=postfix/amavis
    -o smtp_data_done_timeout=1200
    -o smtp_send_xforward_command=yes
    -o disable_dns_lookups=yes
    -o max_use=20
    -o smtp_tls_security_level=none
127.0.0.1:10025 inet n   -       n       -       -       smtpd
    -o syslog_name=postfix/10025
    -o content_filter=
    -o mynetworks_style=host
    -o mynetworks=127.0.0.0/8
    -o local_recipient_maps=
    -o relay_recipient_maps=
    -o strict_rfc821_envelopes=yes
    -o smtp_tls_security_level=none
    -o smtpd_tls_security_level=none
    -o smtpd_restriction_classes=
    -o smtpd_delay_reject=no
    -o smtpd_client_restrictions=permit_mynetworks,reject
    -o smtpd_helo_restrictions=
    -o smtpd_sender_restrictions=
    -o smtpd_recipient_restrictions=permit_mynetworks,reject
    -o smtpd_end_of_data_restrictions=
    -o smtpd_error_sleep_time=0
    -o smtpd_soft_error_limit=1001
    -o smtpd_hard_error_limit=1000
    -o smtpd_client_connection_count_limit=0
    -o smtpd_client_connection_rate_limit=0

    -o 
receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_address_mappings



Can anyone here say what the reason for this might be? Is more 
information needed?


Regards

        Andreas

_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org






















					Reply via email to