OK - So I thought I solved this when I saw that I had a DNS entry that needed to be updated, but it didn't quite do the trick.
My mail server is hosted on domainA.com. It serves as the mail server for domainA.com and domainB.com
Bot domains' DNS has a key: mail._domainkey.<domain>.com with the dkim signature in them. I use the same one for each domain.
Could that be the issue?
________________________________
From: john espiro <john_espiro_at_yahoo.com>
To: "opendkim-users_at_lists.opendkim.org" <opendkim-users_at_lists.opendkim.org>
Sent: Wednesday, September 11, 2013 12:15 AM
Subject: Re: rsa routines:INT_RSA_VERIFY:bad signature
Wait... I think I may know what the issue is. Give me a few hours and if so, I will post back my results...
________________________________
From: Murray S. Kucherawy <msk_at_blackops.org>
To: john espiro <john_espiro_at_yahoo.com>
Cc: "opendkim-users_at_lists.opendkim.org" <opendkim-users_at_lists.opendkim.org>
Sent: Tuesday, September 10, 2013 11:58 PM
Subject: Re: rsa routines:INT_RSA_VERIFY:bad signature
On Tue, 10 Sep 2013, john espiro wrote:
> I am just wondering if this is my setup that is wrong, or if it's a
> problem with many domains. I see problems a lot with mail from gmail
> usrs, yahoo.com users, and some universities.
>
> This link makes it sound like it may be a problem with the ubuntu
> package:
>
http://stackoverflow.com/questions/4102383/debugging-opendkim-postfix-bad-signatures-and-verification-failures
"bad signature" can be caused by a local setup issue, or it might have
something to do with some agent between the signer and the verifier
modifying the message in some way that
invalidates the signature.
For starters, have you confirmed that your public and private keys are in
agreement, using opendkim-testkey?
-MSK
Received on Wed Sep 11 2013 - 20:54:42 PST