On 09/26/2011 02:55 AM, P.V.Anthony wrote:
On 09/25/2011 07:17 PM, Martin Waschbüsch IT-Dienstleistungen wrote:
All you have to do is use the following kind of syntax:
<dkimsign>
<global>
<types id="none" />
</global>
<domain1.tld algorithm="rsa-sha1" domain="domain1.tld"
keyfile="/var/qmail/control/dkim/domain1.tld/keyfile.key"
method="simple" selector="dkim">
<types id="dkim" />
<types id="domainkey" method="nofws" />
</domain1.tld>
<domain2.tld algorithm="rsa-sha1" domain="domain2.tld"
keyfile="/var/qmail/control/dkim/domain2.tld/keyfile.key"
method="simple" selector="dkim">
<types id="dkim" />
<types id="domainkey" method="nofws" />
</domain2.tld>
</dkimsign>
This way, only the individual domains will use signing (and you can
have different options and keys per domain, etc.)
Everything not mentioned in the file will not be signed.
Also note that this config also takes care of domainkeys. so, using
this setup you can remove qmail-dk (or whatever the binary was called)
and put qmail-queue.orig back as the qmail-queue binary file.
Thank you very much. This was exactly what I was looking for. Once again
thank you for sharing this.
P.V.Anthony
---------------------------------------------------------------------------------
This would make for good wiki content. Would someone like to take care
of that? :)
--
-Eric 'shubes'
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
