Re: Is my inbound authentication working or not??

From: Murray S. Kucherawy <msk_at_blackops.org>
Date: Sat, 10 Jul 2010 16:12:49 -0700 (PDT)

On Sat, 10 Jul 2010, Stephen eire wrote:
> I've been doing more testing and I'm seeing what I think are conflicting
> results?
>
> I've sent an email from gmail to a test inbox here.
>
> In the email header I see:
>
> Authentication-Results: foo.umrk.org; dkim=pass
> (1024-bit key; insecure key) header.i=_at_gmail.com; dkim-adsp=pass
>
> Which seems to suggest that the incoming mail authenticated ok?

Correct.

> In mail.log I'm seeing opendkim report "not authenticated" and
> spamassassin report T_DKIM_INVALID.

I can't explain why spamassassin would report an invalid signature, but I
can tell you that (a) "insecure key" means you enabled DNSSEC support and
it reported that the key record was not protected by DNSSEC, and (b) "not
authenticated" means the incoming SMTP connection did not authenticate to
your SMTP server using SMTP AUTH. The DKIM-specific parts look fine.

-MSK
Received on Sat Jul 10 2010 - 23:13:16 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:19:47 PST