Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

[SOLVED] exim4 won't sign DKIM for me

Linux Kernel, Network, and Services configuration.
Post Reply
Message
Author
kaptensnus
Posts: 22
Joined: 2014-05-20 09:58

[SOLVED] exim4 won't sign DKIM for me

#1 Post by kaptensnus »

Hello!

I have the public key correctly in DNS according to http://dkimcore.org/c/keycheck

I have a /etc/exim4/conf.d/main/00_local_macros which looks much like this:

DKIM_CANON = relaxed
DKIM_SELECTOR = default
DKIM_DOMAIN = mustafejen.se
DKIM_FILE = /etc/dkimkeys/myprivatekey.pem

ls -alF /etc/dkimkeys
-rw-r--r-- 1 root root 891 Nov 20 17:23 myprivatekey.pem

I have reconfigured exim4 to read from split files, updated the configuration and restarted exim4.

When I send mail from mustafejen.se using mutt to test sites, the result is "none" (not signed).
If somebody knows what I have missed, please reply :-)

Edit:

Code: Select all

I just checked exim log file, looked like this:2017-11-22 15:43:22 1eHWFF-0003ul-L3 Completed
2017-11-22 15:44:37 1eHWGS-0003wE-Vx <= per@mustafejen.se U=per P=local S=511 id=20171122144436.3rww4xwa2d3q43p2@mustafejen.se
2017-11-22 15:44:38 1eHWGS-0003wE-Vx => check-auth@verifier.port25.com R=dnslookup T=remote_smtp H=verifier.port25.com [38.95.177.125] X=TLS1.2:RSA_AES_256_GCM_SHA384:256 CV=no DN="CN=verifier.port25.com" K C="250 2.6.0 message received"
2017-11-22 15:44:38 1eHWGS-0003wE-Vx Completed
2017-11-22 15:44:41 1eHWGX-0003wL-6G DKIM: d=port25.com s=verifier201208 c=relaxed/relaxed a=rsa-sha256 b=2048 i=auth-results@verifier.port25.com [verification succeeded]
2017-11-22 15:44:41 1eHWGX-0003wL-6G <= auth-results@verifier.port25.com H=verifier.port25.com [38.95.177.125] P=esmtp S=8385 id=1511361878-742524@verifier.port25.com
2017-11-22 15:44:41 1eHWGX-0003wL-6G => per <per@mustafejen.se> R=local_user T=maildir_home
2017-11-22 15:44:41 1eHWGX-0003wL-6G Completed
2017-11-22 15:45:51 1eHWHf-0003xv-CM <= per@mustafejen.se U=per P=local S=495 id=20171122144551.v4iql7b54bwjmeq3@mustafejen.se
2017-11-22 15:45:54 1eHWHf-0003xv-CM => p.gunnarsson@yahoo.com R=dnslookup T=remote_smtp H=mta5.am0.yahoodns.net [98.136.216.26] X=TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128 CV=yes DN="C=US,ST=CA,L=Sunnyvale,O=Yahoo! Inc.,CN=*.am0.yahoodns.net" C="250 ok dirdel"
2017-11-22 15:45:54 1eHWHf-0003xv-CM Completed
Regards,
Per Gunnarsson
Last edited by kaptensnus on 2018-04-07 18:07, edited 2 times in total.

User avatar
GarryRicketson
Posts: 5644
Joined: 2015-01-20 22:16
Location: Durango, Mexico

Re: exim4 won't sign DKIM for me

#2 Post by GarryRicketson »

Sure would be nice if people would use code boxes,... all those e-mail addresses show as click able e-mail links.
Attachments, How to post a screen shot and use code boxes
I am sure p.gunnarsson will appreciate the e-mail spam they get from this.

kaptensnus
Posts: 22
Joined: 2014-05-20 09:58

Re: exim4 won't sign DKIM for me

#3 Post by kaptensnus »

Thanks for telling me about code boxes!

kaptensnus
Posts: 22
Joined: 2014-05-20 09:58

Re: exim4 won't sign DKIM for me

#4 Post by kaptensnus »

I found the solution.

I changed:

/etc/exim4/conf.d/main/00_local_macros

so that it read:

DKIM_CANON = relaxed
DKIM_SELECTOR = 20171123
DKIM_DOMAIN = mustafejen.se
DKIM_PRIVATE_KEY = /etc/dkimkeys/myprivatekey.pem

instead of
DKIM_CANON = relaxed
DKIM_SELECTOR = default
DKIM_DOMAIN = mustafejen.se
DKIM_FILE = /etc/dkimkeys/myprivatekey.pem

I hade to set the right owner and reading rights for the private key too.

Post Reply