Re: [exim] ''multidomain'' DKIM: sender or from?

Top Page
Delete this message
Reply to this message
Author: Michael J. Tubby B.Sc. MIET
Date:  
To: exim-users
Subject: Re: [exim] ''multidomain'' DKIM: sender or from?
Mike,

I do it like this:


1. In the global configuration

#
# https://www.devco.net/archives/2010/05/14/dkim_with_centos_5_and_exim.php
#
DKIM_DOMAIN = ${lc:${domain:$h_from:}}
DKIM_FILE = /etc/exim/dkim/${lc:${domain:$h_from:}}-private.key
DKIM_PRIVATE_KEY = ${if exists{DKIM_FILE}{DKIM_FILE}{0}}


2. In your transports section


#
# This transport is used for delivering messages over SMTP connections.
#
# We add a DKIM singature if we have a private key for the sender's domain
#
remote_smtp:
driver = smtp
dkim_domain = DKIM_DOMAIN
dkim_selector = mail
dkim_private_key = DKIM_PRIVATE_KEY
dkim_canon = relaxed
dkim_strict = 0



Place the keys for each domain in:

     /etc/exim/dkim/<domain-name>-public.key
     /etc/exim/dkim/<domain-name>-private.key



Example:

mike@public:/etc/exim/dkim$ ls -l
total 16
-rw-r--r-- 1 root root 1675 Feb 24 2016 grendel.co.uk-private.key
-rw-r--r-- 1 root root 451 Feb 24 2016 grendel.co.uk-public.key
-rw-r--r-- 1 root root 1675 Feb 24 2016 tubby.org-private.key
-rw-r--r-- 1 root root 451 Feb 24 2016 tubby.org-public.key


and remember to put your public key in your DNS using selector 'mail'.


Check your configuration using ProtoDave:

https://protodave.com/tools/dkim-key-checker/


Mike


On 2/1/2017 10:22 AM, Jeremy Harris wrote:
> On 01/02/17 09:50, Mike Brudenell wrote:
>> A question… Does Exim support generating multiple DKIM signatures from a
>> list of domains? The dkim_domain, dkim_selector, dkim_private_key etc
>> options only seem to take strings as their arguments, not lists of strings,
>> so I can't envision how this would be done?
> No.
>
> There's some half-baked code in the implementation but it looks like
> it was never completed. It certainly won't work as it is.
>
> Raise an RFE if you need it.