Thank you. I believe that was likely our problem, having the submitting
app servers in the config file under ģInternalHostsē.
Steve Loudermilk
Technology Delivery Lead
Delivery Services Team
301-325-2525 (m)
Financial INdustry Regulatory Authority
On 10/15/15, 15:35, "Murray S. Kucherawy" <msk_at_blackops.org> wrote:
>On Thu, 15 Oct 2015, Loudermilk, Stephen wrote:
>> If messages are submitted directly on the sendmail host, it seems to be
>>fine
>> and this is what we see logged:
>>
>> Oct 15 10:46:21 sendmail[4135]: t9FEkL2A004135: milter=opendkim,
>> action=header, continue
>> Oct 15 10:46:21 sendmail[4135]: t9FEkL2A004135: milter=opendkim,
>>action=eoh,
>> continue
>> Oct 15 10:46:21 sendmail[4135]: t9FEkL2A004135: milter=opendkim,
>> action=body, continue
>> Oct 15 10:46:21 sendmail[4135]: t9FEkL2A004135: Milter insert (1):
>>header:
>> DKIM-Signature: v=1; a=rsa-sha256; c=relax
>> ed/simple;\n\td=domain.com;
>>s=ourselector;t=1444920381;\n\tbh=cSAyCJ9bvgBnxKQGW0S45Uk6zPQuGiGTWJbIEt8
>>eYPM=;\n\th=Date
>> :From
>>
>>:To:Subject;\n\tb=vuJhf0g0mR1Aijrc0hF444LebWi1kt1zJxYOlkJAp03RKRKc7AIQGH7
>>XX
>> WDYWSt1M\n\t EUfWwkaA/Q3GeolFZMqO82MSbHaHVUVG0EqzPwaXaQde
>> jhoIxMmeRQAxra1cW01bEF\n\t gFkKCZfUneRcrZZMWYIPc8JDJTqCfi6wd092PqfI=
>> Oct 15 10:46:21 sendmail[4135]: t9FEkL2A004135: Milter accept: message
>>
>> We?ve tried listing the originating servers in the opendkim
>>?TrustedHosts? file.
>> No change. Any help is greatly appreciated.
>
>The opendkim(8) explains how the signing/verifying decision is made. A
>web page version is available here:
>
>http://www.opendkim.org/opendkim.8.html#OPERATION
>
>The likely case is that your Windows machines are not identified as
>machines whose mail should be signed. The default is to sign only mail
>injected by localhost, since we're reasonably sure that's safe; it's
>impossible to assume any other safe default because we can't guess what
>your version of "internal host" means.
>
>You probably want to provide a list of safe IP address blocks, or a
>domain
>name, to InternalHosts.
>
>-MSK
Confidentiality Notice:: This email, including attachments, may include non-public, proprietary, confidential or legally privileged information. If you are not an intended recipient or an authorized agent of an intended recipient, you are hereby notified that any dissemination, distribution or copying of the information contained in or transmitted with this e-mail is unauthorized and strictly prohibited. If you have received this email in error, please notify the sender by replying to this message and permanently delete this e-mail, its attachments, and any copies of it immediately. You should not retain, copy or use this e-mail or any attachment for any purpose, nor disclose all or any part of the contents to any other person. Thank you.
Received on Thu Oct 15 2015 - 20:11:56 PST