FYI, this is what I found on
http://support.google.com/mail/answer/180707?hl=en just now:
*T**o best protect our users, Gmail will begin treating emails signed
with less than 1024-bit keys as unsigned, starting in January 2013. **
**We highly recommend that all senders using short keys switch to RSA
keys that are at least 1024-bits long.*
> On 04/17/2013 08:06 AM, John Williams wrote:
>> Sorry, didn't mean to mean to send this as anonymous...
>>
>> What I forgot to mention is that it sa-test did tell me it was good
>> ONCE:
>
> FWIW I got odd results sending to sa-test as well. I ended up
> searching for other sites to send to, and found some good ones.
> Doesn't look like I bothered to bookmark them though, as IIRC there
> were enough good results from the search that it didn't seem necessary.
>
> I'm assuming you've looked at the full headers from a message sent to
> gmail, and to this list? IME just having dkim won't necessarily
> whitelist you for the major mail providers, but having both dkim and
> spf generally does the trick. Also FWIW if I send mail on this account
> to gmail my dkim validates.
>
> Finally, how large is your key? I've heard that using sizes > 1024 is
> likely to lead to the dreaded "unexpected results."
>
> hth,
>
> Doug
>
>
>
>
>
Received on Thu Apr 18 2013 - 10:04:29 PST