On 04/12/17 11:28, Sebastian Nielsen via Exim-users wrote: > I Think the cause of this is due to wildcards.
> To protect your domain from a crook who spoofs subdomains, you simply
> put a wildcard, so for example *.sebbe.eu is a SPF record.
> You can also extend this to *.*.sebbe,eu and so on. And if the
> wildcard matches, you will get a "spurious" SPF record with your DKIM
> lookup.
>
> So any record that doesn't start with "v=DKIM1" should Always be skipped!
Which is not what the DKIM RFC says. Therefore, you have set up
a non-useful DKIM installation.
--
Cheers,
Jeremy