Difference between revisions of "DKIM How To"
| Line 17: | Line 17: | ||
Test Keys: | Test Keys: | ||
opendkim-testkey -d domain.com -s mail -vvv | opendkim-testkey -d domain.com -s mail -vvv | ||
| + | dig mail._domainkey.domain.com TXT | ||
Need permissions: | Need permissions: | ||
Revision as of 04:25, 9 May 2018
DKIM add new key:
- create keys and put them into /etc/opendkim/keys/domains.com/keys
- add domain to trusted.hosts
- add domain to signing.table
- add domain to key.table
systemctl restart opendkim
Generate keys two ways:
opendkim-genkey -t -s mail -d domain.com -v opendkim-genkey -b 2048 -h rsa-sha256 -r -s mail -d domain.com -v
Add mail.txt to DNS:
cat mail.txt >> /etc/bind/zone-enabled/domain.com.zone
Test Keys:
opendkim-testkey -d domain.com -s mail -vvv dig mail._domainkey.domain.com TXT
Need permissions:
chown -R opendkim:opendkim /etc/opendkim/ chmod go-rwx /etc/opendkim/* chmod 700 -R /etc/opendkim/keys/
Debugging:
grep -r milter /var/log/syslog grep -i dkim /var/log/mail.log
Notes:
If it keys do not pass on reboot, do the following:
systemctl restart opendkim systemctl restart postfix
Documentation:
Tools:
