Re: General OpenDKIM setup questions

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Scott Kitterman <ietf-dkim_at_kitterman.com>
Date: Fri, 04 May 2012 00:41:15 -0400

On Thursday, May 03, 2012 10:33:33 PM Murray S. Kucherawy wrote:
> > -----Original Message-----
> > From: opendkim-users-bounce_at_lists.opendkim.org
> > [mailto:opendkim-users-bounce_at_lists.opendkim.org] On Behalf Of Patrick
> > Ben Koetter Sent: Thursday, May 03, 2012 3:20 PM
> > To: opendkim-users_at_lists.opendkim.org
> > Subject: Re: General OpenDKIM setup questions
> >
> > Key rotation, as Murray said, but also in case you need to revoke a key
> > (selector + empty PTR). Maybe 'revoking' should be one of your tools
> > abilities too.
>
> Just to be clear, DKIM allows revocation of a key by using an empty "p=" tag
> in the TXT record.

Removing the TXT record is sufficient (you should move to a new selector when
you rotate keys).

Scott K
Received on Fri May 04 2012 - 04:41:29 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:40 PST