On 13.11.2014 21:31, Paul Muster wrote:
> my goal is to reject emails from domains that well-known use DKIM for
> their outbound emails if signature is missing or invalid. But - because
> I receive emails from many mailing lists - only if sender_domain is one
> of these well-known senders.
>
> Does this ACL do the job?
>
>
> deny message = DKIM check failed
> sender_domains = gmail.com:ebay.com:ebay.de:paypal.com
> dkim_signers = gmail.com:ebay.com:ebay.de:paypal.com
> dkim_verify_signers = $sender_address_domain
> dkim_status = none:invalid:fail
No, it doesn't. This line
dkim_verify_signers = $sender_address_domain
is valid _in main config section_.
Will this config do what I expect?
Greetings,
Paul
