> -----Original Message-----
> From: opendkim-users-bounce_at_lists.opendkim.org [mailto:opendkim-users-bounce_at_lists.opendkim.org] On Behalf Of Quanah Gibson-Mount
> Sent: Thursday, May 03, 2012 8:19 AM
> To: opendkim-users_at_lists.opendkim.org
> Subject: SELECTOR question
>
> Is there any reason not to use a guaranteed UUID for the SELECTOR with
> dkim, something like:
>
> 9d624885-08e6-4ebf-bc0f-532b0d9f4060
>
> I ask because we have clients that literally have hundreds or thousands
> of domains. Having them try and pick a selector for each domain,
> rather than generating it programmatically with a UUID seems like it
> would be a major headache to manage.
>
> My DKIM keys & selector bits will be stored in LDAP, so config files
> aren't an issue here.
I imagine you should give them the choice, but something transparent like that is likely fine. As long as that fits inside a DNS label, and the total DNS query name length doesn't exceed the maximum, nothing should squawk.
(I think this was in some email you sent yesterday; this is a re-paste of my answer.)
-MSK
Received on Fri May 04 2012 - 21:08:32 PST
This archive was generated by hypermail 2.3.0
: Mon Oct 29 2012 - 23:20:40 PST