Am 29.01.2012 21:03 schrieb Murray S. Kucherawy:
> On Sat, 28 Jan 2012, Andreas Schulze wrote:
> Try the attached patch.
works like a charme!
A attach my README.CHROOT. It discribes chrooting for a signer.
For validation a more complex chroot is needed. The postfix source tarball
includes scripts to setup chroot jails for postfix daemons. I used the Linux-Script
to setup a opendkim chroot jail.
That way I was able to
- sign mails using domain/key/selector settings
- sign mails using signingtable/keytable as files
- validate signatures
- validate the dnssec protected public key
- query my own reputation server ( which is a ipv6 only service :-) )
- query the (old) DNS reputation service discribed at
http://www.dkim-reputation.org
Feel free to polish the README...
Andreas
--
########################################################################
#
# Andreas Schulze
# https://andreasschulze.de
#
# GnuPG Key-ID: A7DBA67F, https://andreasschulze.de/sca.asc
# GnuPG Fingerprint: 14C1 39A8 CE6D 6BE0 28C6 5652 03B5 6793 A7DB A67F
#
# $Id: .signature,v 1.3 2007-12-27 21:13:36 sca Exp $
########################################################################
Received on Mon Jan 30 2012 - 21:36:14 PST