Re: [exim] Gmail frequent DKIM failures

Pàgina inicial
Delete this message
Reply to this message
Autor: Ivo Truxa
Data:  
A: exim-users
Assumpte: Re: [exim] Gmail frequent DKIM failures
> -----Original Message-----
> From: Max Kostikov [mailto:max@kostikov.co]
> Jusy sent message with required size from Gmail and found that message
> contains two DKIM signatures: first from gmail.com and second from
> 1e100.net domain. Seems we are have problems at Google side.


Thanks for your input, Max. In the meantime I found the culprit of the frequent DKIM failures at Gmail - it is the ESMTP CHUNKING command BDAT that gets inserted in to the DKIM's canonalized body string. Please check the bug track at https://bugs.exim.org/show_bug.cgi?id=2016

The double DKIM in your case is all right, and not causing problems with DKIM checks in Exim. Multi signatures are used for example when email is being forwarded, passing through several servers, or for a number of other reasons. Besides others, Google routes messages through different data mining services - like for example the Mark Monitor (verifying whether correspondents do not share links or files protected by copyright laws), etc. As for 1e100.net, Google tells about it:

"1e100.net is a Google-owned domain name used to identify the servers in our network. Following standard industry practice, we make sure each IP address has a corresponding hostname."

3rd party websites reveal more information about it.

Greetings,
Ivo Truxa