Difference between revisions of "DKIM How To"

From HyperSecurity Wiki
Jump to: navigation, search
Line 19: Line 19:
 
Debugging:
 
Debugging:
 
  grep -r milter /var/log/syslog
 
  grep -r milter /var/log/syslog
 +
 +
Notes:
 +
 +
If it keys do not pass on reboot, do the following:
 +
systemctl restart opendkim
 +
systemctl restart postfix
  
 
Tools:
 
Tools:
 
*[https://dkimcore.org/tools/ Key Generator]
 
*[https://dkimcore.org/tools/ Key Generator]
 
*[http://dkimvalidator.com/ Online Key Validator]
 
*[http://dkimvalidator.com/ Online Key Validator]

Revision as of 07:31, 8 May 2018

DKIM add new key:

  • create keys and put them into /etc/opendkim/keys/domains.com/keys
  • add domain to trusted.hosts
  • add domain to signing.table
  • add domain to key.table
systemctl restart opendkim

Generate keys: 

opendkim-genkey -b 2048 -h rsa-sha256 -r -s mail -d domain.com -v

Test Keys: 

opendkim-testkey -d domain.com -s mail -vvv

Need permissions: 

chown -R opendkim:opendkim /etc/opendkim/
chmod 700 /etc/opendkim/keys/

Debugging: 

grep -r milter /var/log/syslog

Notes:

If it keys do not pass on reboot, do the following: 

systemctl restart opendkim
systemctl restart postfix

Tools:

Retrieved from "http://www.hypersecuresolutions.com/wiki/index.php?title=DKIM_How_To&oldid=2334"