Am 29.01.2012 21:03 schrieb Murray S. Kucherawy:
> On Sat, 28 Jan 2012, Andreas Schulze wrote:
> Try the attached patch.
works like a charme!
A attach my README.CHROOT. It discribes chrooting for a signer.
For validation a more complex chroot is needed. The postfix source tarball
includes scripts to setup chroot jails for postfix daemons. I used the Linux-Script
to setup a opendkim chroot jail.
That way I was able to
- sign mails using domain/key/selector settings
- sign mails using signingtable/keytable as files
- validate signatures
- validate the dnssec protected public key
- query my own reputation server ( which is a ipv6 only service :-) )
- query the (old) DNS reputation service discribed at http://www.dkim-reputation.org
Feel free to polish the README...
Andreas
-- ######################################################################## # # Andreas Schulze # https://andreasschulze.de # # GnuPG Key-ID: A7DBA67F, https://andreasschulze.de/sca.asc # GnuPG Fingerprint: 14C1 39A8 CE6D 6BE0 28C6 5652 03B5 6793 A7DB A67F # # $Id: .signature,v 1.3 2007-12-27 21:13:36 sca Exp $ ########################################################################
This archive was generated by hypermail 2.2.0+W3C-0.50 : Mon Jan 30 2012 - 21:50:06 PST