On Wed, 7 Sep 2011, Kirill Bychkov wrote:
> Test emails to many public mail servers (i.e. gmail) and test service
> port25.com are checked and DKIM signature successfully check (DKIM: pass)
> But some mail server write to header:
>
> X-DKIM-FAIL: DKIM test failed: (address=xx_at_example.com domain=example.com),
> signature is bad.
> My colleague checked my emails by Exim. Result:
> signature_incorrect (when $dkim_verify_status=?fail?): The signature could not
> be verified. This may mean that headers were modified, re-written or
> otherwise changed in a way which is incompatible with DKIM verification. It
> may of course also mean that the signature is forged.
>
> My OpenDKIM only signing message, no checking.
>
> Any ideas?
If all verifiers other than this one are passing your signature, my guess
is that this particular one is either broken or has something in the way
that's modifying messages before verification.
You can do things like set Diagnostics or KeepTemporaryFiles on your side
and send a test message, then analyze what gets received and look for
thigns that might have changed in transit. That's about as much as I can
suggest without knowing more about the verifier that's running on the
receiver side.
-MSK
Received on Wed Sep 07 2011 - 16:17:32 PST
This archive was generated by hypermail 2.2.0+W3C-0.50 : Wed Sep 07 2011 - 20:50:02 PST