[exim-dev] [Bug 2947] dkim=fail (signature did not verify) d…

Góra strony
Delete this message
Reply to this message
Autor: admin
Data:  
Dla: exim-dev
Temat: [exim-dev] [Bug 2947] dkim=fail (signature did not verify) delivery to Microsoft Exchange
https://bugs.exim.org/show_bug.cgi?id=2947

--- Comment #3 from Andre Leroux <drandre222@???> ---
Here are the two full email headers:

(1) Header #1: Exim to Gmail
(2) Header #2: Exim to O365

click here (https://www.dropbox.com/t/zQZzVA91ULjbR26p) to download. Password
is ' password123 '.


Below is my service providers response:

---
This appears to be a global issue with cPanel. Here is what cPanel' support
department have said regarding the matter:

When emails are sent from Exim and received in Outlook, the DKIM signature is
invalid.

dkim=fail (signature did not verify)

Description

In Exim, DKIM signed headers are added according to RFC standards.

https://www.exim.org/exim-html-current/doc/html/spec_html/ch-dkim_spf_and_dmarc.html

When unspecified, the header names listed in RFC4871 will be used,
whether or not each header is present in the message.
The default list is available for the expansion in
the macro “_DKIM_SIGN_HEADERS” and an oversigning variant
is in “_DKIM_OVERSIGN_HEADERS”.

When the option is left unset, the defaults are used. However, Outlook reports
the DKIM signature is incorrect, while many other providers indicate the
signature is correct. For comparison, we sent the same email to Hotmail/Outlook
servers and Gmail servers. Gmail servers always validated the DKIM as correct,
while Outlook servers marked the signature as invalid.

We've opened an internal case for our development team to investigate this
further. For reference, the case number is CPANEL-37039. Follow this article to
receive an email notification when a solution is published in the product.

Workaround

A workaround is unclear at this time.

--
You are receiving this mail because:
You are on the CC list for the bug.