Sign all outgoing mail with DKIM

From: Eugene Vivdich <eugene_at_seine.me>
Date: Thu, 11 Jun 2015 13:14:44 +0300

Hi,
I'm trying to configure open-dkim + postfix to sign all outgoing email.
There is lack of documentation on this matter, so I was using the only one
link found:
http://serverfault.com/questions/52830/dkim-sign-outgoing-mail-from-any-domain-with-postfix-and-ubuntu
The issue is that this howto operates with old opendkim and current version
has changes:
There is no more KeyFile option and it's divided into two options:
KeyTable /etc/mail/key.table
SigningTable /etc/mail/signing.table

I'm using latest debian 64bit:

Here are my configs:

/etc/opendkim.conf
Syslog yes
UMask 002
Domain *
KeyTable /etc/mail/key.table
SigningTable /etc/mail/signing.table
Selector mail
AutoRestart yes
Background yes
Canonicalization relaxed/relaxed
DNSTimeout 5
Mode sv
SignatureAlgorithm rsa-sha256
SubDomains no
X-Header no
Statistics /var/log/dkim-filter/dkim-stats
OversignHeaders From

/etc/default/opendkim
SOCKET="inet:8891_at_localhost"

/etc/mail/key.table
key1 addoop.net::/etc/mail/dkim.key

/etc/mail/signing.table
* key1

And I got error in my log:
opendkim[26610]: KeyTable entry for 'key1' corrupt
opendkim[26610]: BED2A1D60CCA: error loading key 'key1'

How should I change my config to sign ALL outgoing mail.
Thanks!

---
eugene 
Received on Thu Jun 11 2015 - 10:15:07 PST

This archive was generated by hypermail 2.3.0 : Thu Jun 11 2015 - 10:27:00 PST