>> In mail.log I'm seeing opendkim report "not authenticated" and
>> spamassassin report T_DKIM_INVALID.
>
> I can't explain why spamassassin would report an invalid signature, but I
> can tell you that (a) "insecure key" means you enabled DNSSEC support and
> it reported that the key record was not protected by DNSSEC, and (b) "not
> authenticated" means the incoming SMTP connection did not authenticate to
> your SMTP server using SMTP AUTH. The DKIM-specific parts look fine.
Thanks Murray.
I'm using the opendkim from the Ubuntu Lucid repositories at the moment, so I guess they have DNSSEC enabled by default there.
Stephen
_________________________________________________________________
http://clk.atdmt.com/UKM/go/195013117/direct/01/
Received on Sun Jul 11 2010 - 02:38:01 PST