Using sendmail with opendkim for signing mostly works, but I have a few
domains with dmarc p=reject, and looking at the aggregate reports, I am
seeing some dkim=fail, spf=pass on a small amount of mail going to
google, comcast, etc. The aggregate reports show that mail is signed
with the right selector (default._domainkey.lynchexhibits.com).
Hello Carl,
I've had dkim signature problems too, they were all related with line
lenght (max 990 characters).
Some customers sent the content all in one line or had a very long line
within the html.
In these cases sendmail added exclamation marks and dkim signature was
broken.
"The default for SMTPLINELIM is 990 (defined in RFC821) and that value
should not be changed."
http://www.diablotin.com/librairie/networking/sendmail/ch18_08.htm#SML2-CH-18-SECT-8-43
Why it should not be changed:
http://newsgroups.derkeiler.com/Archive/Comp/comp.mail.sendmail/2008-11/msg00038.html
Regards
Andrea
_______________________________________________
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
