Re: [exim] How to use DKIM with Ed25519 - Dual DKIM signing

Top Page
Delete this message
Reply to this message
Author: Odhiambo Washington
Date:  
To: exim users
Subject: Re: [exim] How to use DKIM with Ed25519 - Dual DKIM signing
On Thu, Oct 14, 2021 at 3:08 PM Wolfgang Breyha via Exim-users <
exim-users@???> wrote:

> On 14/10/2021 13:12, Odhiambo Washington via Exim-users wrote:
> > Is anyone already doing this with Exim?
>
> Sure. Simply set dkim_selector and dkim_private_key accordingly. Meaning
> set both your RSA and ED selectors and keys.
>


My current transport, in a multi-domain setup:

remote_smtp:
  driver = smtp
  dkim_domain        = ${if
exists{/etc/exim/DKIM/${lc:$sender_address_domain}}{${lc:$sender_address_domain}}{}}
  dkim_selector      = key1
  dkim_private_key   = ${lookup {${sender_address_domain}} \
                       dsearch,ret=full {/etc/exim/DKIM} \
                       {$value/dkim.priv.key} {false}}
  dkim_canon         = relaxed
  dkim_strict           = true



Given:
1. I have 2 private keys - dkim.priv.key and dkim_ed25519.priv.key
2. I have published a DNS record for key1._domainkey.example.com for the
RSA, and key2._domainkey.example.com for the ED25519 keys respectively

Any easier way to integrate that into my transport?


--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", egrep -v '^$|^.*#' :-)