Re: Sign the message based on the Return-Path

From: Fabio S. Schmidt <fabio_at_improve.inf.br>
Date: Fri, 15 Jan 2016 23:41:42 +0000

Hi Benny,

I'm not using it on my own domain. This scenario is for a customer.

Thanks for the tips ;-) !

Kind regards.


Em sex, 15 de jan de 2016 às 21:21, Benny Pedersen <me_at_junc.eu> escreveu:

> Fabio S. Schmidt skrev den 2016-01-15 20:54:
>
> > For the record, I've recompiled the ubuntu opendkim package with the
> > option "--enable-sender_macro" and Opendim is now signing the messages
> > based on the return-path field.
>
> Authentication-Results: linode.junc.eu; dmarc=none
> header.from=improve.inf.br
> Authentication-Results: linode.junc.eu;
> dkim=pass (1024-bit key) header.d=opendkim.org
> header.i=opendkim-users-bounce_at_lists.opendkim.org header.b=fxI7iERW;
> dkim=fail reason="key not found in DNS" (0-bit key)
> header.d=improve.inf.br header.i=_at_improve.inf.br header.b=pt8FZbeP;
> dkim-atps=neutral
>
> lets say it works ?
>
> {mail-addr} is imho also fail to sign, it must be {auth-auten}
>
> opendkim should not sign forged senders, i dont know much but its seem
> to be a problem only solved in opendmarc and not yet in opendkim :/
>
> milters should be sasl awere imho
>
>
Received on Fri Jan 15 2016 - 23:42:09 PST