On Dec 12, 2011, at 4:36 PM, Murray S. Kucherawy wrote:
> On Mon, 12 Dec 2011, SM wrote:
>> The message may have been modified after it was DKIM signed. That would
>> cause the verification failure (bad signature). Can you enable the
>> KeepTemporaryFiles parameter in your configuration (see
>> http://www.opendkim.org/opendkim.conf.5.html for more information)?
>
> You might also try enabling Diagnostics (if you're using the filter and
> not just the library), which will add a debugging tag to the signature
> that allows you to spot header changes that could be breaking signatures.
>
> I suggest doing both what SM said and this at the same time, as it saves
> reconfiguring later.
>
> -MSK
Done and done. Here are the results.
There were just 2 temp files and they were so short I'm including them here (let me know if you actually need the files in a tarball).
dkim.pBDHYRBF062185.EzEbDt:
Test
dkim.pBDHYRBF062185.ZIpBrx:
to:<cbartels_at_yahoo-inc.com>,<cebartels_at_gmail.com>,<cebartels_at_yahoo.com>,<autorespond+dkim_at_dk.elandsys.com>
from:cbartels_at_cctw.yahoo-inc.com
subject:Mail Test7
date:Wed, 14 Dec 2011 01:34:27 +0800
message-id:<20111213_173427_081476.cbartels_at_cctw.yahoo-inc.com>
dkim-signature:v=1; a=rsa-sha256; c=relaxed/simple; d=cctw.yahoo-inc.com; s=care; t=1323797667; bh=fdkeB/A0FkbVP2k4J4pNPoeWH6vqBm9+b0C3OY87Cw8=; h=To:From:Subject:Date:Message-ID; z=To:=2
And the reply from autorepond+dkim:
This is an automatic response. Replies to this message will not generate
an automatic response.
Do not reply to this message except for reporting a problem.
The results are as follows:
DKIM Signature validation: DKIM-Signature could not be verified
DomainKeys Signature validation: not available
DomainKeys Policy: query failed
DKIM Author Domain Signing Practices: no DNS record for _adsp._domainkey.cctw.yahoo-inc.com
ADSP is not required for DKIM signature validation.
Note: The authentication results are not available as
there was no signature header or the signature could
not be verified
Information about DKIM is available at http://www.elandsys.com/resources/mail/dkim/opendkim.html
Information about ADSP is available at http://www.elandsys.com/resources/sendmail/opendkim.html
Information about dkim-milter is available at http://www.elandsys.com/resources/sendmail/dkim.html
Information about DomainKeys is available at http://www.elandsys.com/resources/sendmail/domainkeys.html
Original message:
Received: from mailtw.cc.tw1.yahoo.com (mailtw.cc.tw1.yahoo.com [119.160.254.62])
by mx.elandsys.com (8.14.4/8.14.5) with ESMTP id pBDHYXH4017199
(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
for <autorespond+dkim_at_dk.elandsys.com>; Tue, 13 Dec 2011 09:34:41 -0800 (PST)
Received: from apacrpt2.cc.corp.tw1.yahoo.com (apacrpt2.cc.corp.tw1.yahoo.com [202.174.4.143])
by mailtw.cc.tw1.yahoo.com (8.14.4/8.14.4/cctw) with ESMTP id pBDHYRBF062185;
Tue, 13 Dec 2011 09:34:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cctw.yahoo-inc.com;
s=care; t=1323797667;
bh=fdkeB/A0FkbVP2k4J4pNPoeWH6vqBm9+b0C3OY87Cw8=;
h=To:From:Subject:Date:Message-ID; z=To:=2
To: <cbartels_at_yahoo-inc.com>, <cebartels_at_gmail.com>, <cebartels_at_yahoo.com>,
<autorespond+dkim_at_dk.elandsys.com>
From: cbartels_at_cctw.yahoo-inc.com
Subject: Mail Test7
Date: Wed, 14 Dec 2011 01:34:27 +0800
X-Mailer: Perl script "test_mail.pl"
using Mail::Sender 0.8.16 by Jenda Krynicky, Czechlands
running on apacrpt2.cc.corp.tw1.yahoo.com (202.174.4.143)
under account "cbartels"
Message-ID: <20111213_173427_081476.cbartels_at_cctw.yahoo-inc.com>
Test
Received on Tue Dec 13 2011 - 17:52:09 PST
This archive was generated by hypermail 2.2.0+W3C-0.50 : Tue Dec 13 2011 - 21:50:03 PST