Re: [dkim-ops] no signature data on the log

From: Murray S. Kucherawy <msk_at_blackops.org>
Date: Fri, 12 Mar 2010 15:57:27 -0800 (PST)

On Sat, 13 Mar 2010, Murat ALTIPARMAK wrote:
> I am a little bit confused because I finally succeeded in signing the
> messages from my domain thanks to you and sent successfully to signed e-mail
> to gmail.com. However, the same e-mail is reaching to yahoo but it is not
> being treated as signed by Yahoo although DKIM-Signature is available in the
> header.

Based on the Authentication-Results: header field Yahoo! is adding on
delivery, your mail is signed and is being properly validated (note the
"dkim=pass"). However, what Yahoo! does with that information is not
something we can influence. They could choose to ignore it entirely if
they want to do so.

> As the name states, opendkim should be open to every mail provider
> and am I not right about that?

It is, and in fact Yahoo! is using the libopendkim library, the same code
you just compiled.

> Why is not Yahoo accepting the same mail as signed?

The header you included shows that they are accepting it as signed. What
they're doing with signed mail though is a different question, and isn't
something we can answer.

> Is there a time interval for a domain to start sending signed mails
> to Yahoo?

That's a matter of Yahoo's local policy. There's no way for us to know
what they're doing inside their systems with the result of DKIM
verification. I wouldn't be surprised, though, to discover there's some
period of time before which they will begin trusting your signatures.
There's nothing stopping spammers from signing their mail, so perhaps they
want to wait and see how your domain behaves before giving your signed
mail some preferential treatment.

> Should I open a support ticket?

I don't know what the right course of action would be. Do they have web
pages about how they handle DKIM?

-MSK
Received on Fri Mar 12 2010 - 23:57:48 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:19:46 PST