OpenDkim + Postfix + Centos 11.5 : DKIM check fail (wrong body hash) from Charles RUELLE on 2013-12-26 (OpenDKIM Users mailing list)

From: Charles RUELLE <charles.ruelle_at_gmail.com>
Date: Thu, 26 Dec 2013 11:10:52 +0100

Hi,

I have a problem to use OpenDKIM + Postfix on Centos release 6.5 with Plesk 11.5

I already installed everything following the tutorial : http://blog.matoski.com/articles/spf-dk-dkim-plesk-debian/
and put informations in my domain :

default._domainkey.testagogo.com. 21600 IN TXT "p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmZGrX2cMNElnffib4nRh+iwXdvM9U7i2NA9CMz30tD1j9nHu8Uyb+0skacVKMQ57I+rPQM9Vcjfdvc2sEkA4SbDJL4Lx5QutXH88I0vQbrW9okJtUsnlZLZtrT/7k0GOm473cxbT+43QWK/Oc+Z+XqYwiiVj1KjYPzoukFUF2EQIDAQAB\;"

mail._domainkey.testagogo.com. 21600 IN TXT "v=DKIM1\; k=rsa\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCco+lJKmsXM0m62w3/mkibiYUm/thDEDIEXcg4bW63cfl2mrISTrwJK/t4A+C1yGZ4zmGeC2F2+BXxrs5LEkmz7CrASV+Yyecl46Ay76V2P3rFh6CN4n28mgx2eGHR+p+uRa4DlBYoEJlBJwIr/f7tWtJ0GAZHjMsjrF69eXbR4QIDAQAB"

testagogo.com. 86400 IN TXT "v=spf1 mx ptr ip4:91.121.222.103 ip4:87.98.174.40 mx:alt1.aspmx.l.google.com mx:alt2.aspmx.l.google.com mx:aspmx.l.google.com mx:aspmx2.googlemail.com mx:aspmx3.googlemail.com include:_spf.google.com -all"

———

But DOMAINKEYS check is NEUTRAL and DKIM Check is FAIL :

THE RESULT FROM The Port25 Solutions, Inc. team
==========================================================
Summary of Results
==========================================================
SPF check: pass
DomainKeys check: neutral
DKIM check: fail
Sender-ID check: pass
SpamAssassin check: ham

----------------------------------------------------------
DomainKeys check details:
----------------------------------------------------------
Result: neutral (message not signed)
ID(s) verified: header.From=envoi_at_testagogo.com
DNS record(s):

----------------------------------------------------------
DKIM check details:
----------------------------------------------------------
Result: fail (wrong body hash: expected 0HXTp+f801Q75aVTE56OzhbPqrCzvkgFEMO0lwScYKE=)
ID(s) verified:
Canonicalized Headers:
   to:check-auth-charles.ruelle=gmail.com_at_verifier.port25.com'0D''0A'
   subject:le'20'sujet'0D''0A'
   from:envoi_at_testagogo.com'0D''0A'
   dkim-signature:v=1;'20'a=rsa-sha256;'20'c=relaxed/relaxed;'20'd=testagogo.com;'20's=mail;'20't=1388052479;'20'bh=DeSTqX+e7x4AtB39jixuwBxMZg4ZToxhsOplmpZ32u4=;'20'h=To:Subject:From:Reply-To:Date:From;'20'b=

Canonicalized Body:
   Reply-To:'20'envoi_at_testagogo.com'0D''0A'
   Message-Id:'20'<20131226100759.C445B48051B_at_ns1.clubdespromos.com>'0D''0A'
   Date:'20'Thu,'20'26'20'Dec'20'2013'20'11:07:59'20'+0100'20'(CET)'0D''0A'
   '0D''0A'
   Bonjour'20'NEW!'0D''0A'

DNS record(s):

NOTE: DKIM checking has been performed based on the latest DKIM specs
(RFC 4871 or draft-ietf-dkim-base-10) and verification may fail for
older versions. If you are using Port25's PowerMTA, you need to use
version 3.2r11 or later to get a compatible version of DKIM.

————

Thank you very much for your help,

Charles
Received on Thu Dec 26 2013 - 10:11:11 PST

This archive was generated by hypermail 2.3.0 : Thu Dec 26 2013 - 10:18:01 PST