Tutorial for filter-dkimsign on Debian
Not sure if I'm supposed to do this, but as I like to document things that I've found hard, I've put up a tutorial for getting dkim working with opensmtpd. The link is below in case it might help someone now or in the future: https://simonh.uk/2021/06/23/get-dkim-working-with-opensmtpd/ -- Web: https://simonh.uk Email: m...@simonh.uk
Re: Tutorial for filter-dkimsign on Debian
On Wed, 2021-06-23 at 15:52 +0100, Simon Harrison wrote: > Not sure if I'm supposed to do this, but as I like to document things > that I've found hard, I've put up a tutorial for getting dkim working > with opensmtpd. The link is below in case it might help someone now or > in the future: > > https://simonh.uk/2021/06/23/get-dkim-working-with-opensmtpd/ > Note that with this setup you only sign mail received via the local unix socket. In other words: via the sendmail command submission. Also, if a mail is send via this way and smtpd is down it's "manually" queued by smtpctl (in sendmail mode) itself, which circumvents the filter code. If a mail is send over tcp via localhost it won't be signed, since it doesn't have have the filter statement. The filter command should be placed on each "listen on" statement you want the filter to apply. Maybe you intend it like this, but if you're going to post this it might become a pitfall for others. Anyway, thanks for sharing and hope it runs well for you.
Re: Tutorial for filter-dkimsign on Debian
On Wed, 23 Jun 2021 17:02:28 +0200 Martijn van Duren wrote: > Note that with this setup you only sign mail received via the local > unix socket. In other words: via the sendmail command submission. > Also, if a mail is send via this way and smtpd is down it's > "manually" queued by smtpctl (in sendmail mode) itself, which > circumvents the filter code. If a mail is send over tcp via localhost > it won't be signed, since it doesn't have have the filter statement. > > The filter command should be placed on each "listen on" statement you > want the filter to apply. Maybe you intend it like this, but if you're > going to post this it might become a pitfall for others. > > Anyway, thanks for sharing and hope it runs well for you. > > Ah yes, I'll make a note that this is for an outgoing only mail server. I've not yet dared muck about with incoming mail! -- Web: https://simonh.uk Email: m...@simonh.uk
Re: Tutorial for filter-dkimsign on Debian
On Wed, 23 Jun 2021 17:02:28 +0200 Martijn van Duren wrote: > Note that with this setup you only sign mail received via the local > unix socket. In other words: via the sendmail command submission. > Also, if a mail is send via this way and smtpd is down it's > "manually" queued by smtpctl (in sendmail mode) itself, which > circumvents the filter code. If a mail is send over tcp via localhost > it won't be signed, since it doesn't have have the filter statement. > > The filter command should be placed on each "listen on" statement you > want the filter to apply. Maybe you intend it like this, but if you're > going to post this it might become a pitfall for others. > > Anyway, thanks for sharing and hope it runs well for you. > > Out of curiosity, Martijn, what would you recommend for both an outgoing only and outgoing/incoming server? As I wrote previously, having listen on socket filter "dkimsign" was the only way I could get dkimsign to work?! I'm not very clued up on mail servers (at all). Thanks, Simon -- Web: https://simonh.uk Email: m...@simonh.uk
