Re: opendkim AUTH pass-es for received mail, but fails on forward ...

From: Scott Kitterman <ietf-dkim_at_kitterman.com>
Date: Tue, 10 Apr 2012 18:15:52 -0400

On Tuesday, April 10, 2012 09:47:15 PM Murray S. Kucherawy wrote:
> > -----Original Message-----
> > From: locuse_at_mm.st [mailto:locuse_at_mm.st]
> > Sent: Tuesday, April 10, 2012 2:43 PM
> > To: Murray S. Kucherawy; opendkim-users_at_lists.opendkim.org
> > Subject: Re: opendkim AUTH pass-es for received mail, but fails on forward
> > ...
> >
> > the original external -> zimbra delivery has a From: ==
> > "###_at_fastmail.fm".
>
> Then the queried policy record will be _adsp._domainkey.fastmail.fm.
>
> > dig TXT _adsp._domainkey.fastmail.fm +short
> >
> > "v=spf1 include:spf.messagingengine.com ?all"
>
> This causes the error, because it was looking for an ADSP policy record and
> it got back an SPF policy record, likely caused by an unfortunate wildcard
> TXT record at fastmail.fm.
>

Shouldn't opendkim (or libdkim) be validating that what it retrieves from
_adsp._domainkey is, in fact, an ADSP record?

Scott K
Received on Tue Apr 10 2012 - 22:16:06 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:39 PST