Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 3 Sep 2018 15:34:30 -0400
From:      William Dudley <>
To:        "James B. Byrne" <>,  freebsd-questions <>
Subject:   Re: DKIM is driving me nuts
Message-ID:  <>
In-Reply-To: <>
References:  <> <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
I have an SPF record.

That is not the problem.

The problem is that the server has three names:

and I cannot figure out how opendkim chooses which key
to use to sign emails.  Does it look at Message-Id?  Does it look
at Reply-to: (unlikely) ?  Whatever field it uses, changes depending
on if I use Thunderbird, Mail (mailx), or the mailman listserve to send
the email.

Bill Dudley

This email is free of malware because I run Linux.

On Mon, Sep 3, 2018 at 3:03 PM, James B. Byrne <>

> On Sun, September 2, 2018 19:06, William Dudley wrote:
> > I'm trying to make DKIM work on my FreeBSD 10.3, stock sendmail
> > system.
> > Since I don't know if the problem is sendmail or opendkim or DNS or
> > what, I'm asking here.
> >
> You need a sender policy framework specification in your dns for the
> domains you wish secured.  You do not put the keys in this, just the
> policy version, the authorised hosts, and the disposal option.
> Ours is:
>          172800  IN      TXT
>    "v=spf1 ip4: ip4:
> ip4: -all"
> The ~all at the end is called a soft fail. It means that recipients
> may accept mail from another server, but that the sender should be
> viewed with suspicion. If you change the disposal option to -all you
> are directing the recipient to reject mail from any server other than
> these. The soft fail approach is safer and recommended.
> If you employ dkim without a dns entry for your sender policy
> framework, or with invalid SPF or multiple SPF dns records, then the
> correct behaviour is to reject all mail from the sender since the
> policy cannot be determined.
> --
> ***          e-Mail is NOT a SECURE channel          ***
>         Do NOT transmit sensitive data via e-Mail
>  Do NOT open attachments nor follow links sent by e-Mail
> James B. Byrne      
> Harte & Lyne Limited
> 9 Brockley Drive              vox: +1 905 561 1241
> Hamilton, Ontario             fax: +1 905 561 0757
> Canada  L8E 3C3

Want to link to this message? Use this URL: <>