Re: RFE: Add option to specify resolver for opendkim-testkey

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: A. Schulze <sca_at_andreasschulze.de>
Date: Sun, 25 Dec 2016 22:52:57 +0100

Am 22.12.2016 um 13:57 schrieb Patrick Ben Koetter:
> it seems like opendkim-testkey has no option to specify which DNS resolver it
> should query in order to retrieve a key via DNS. My current research indicates
> it will query root servers directly.

forwarding such traffic is not impossible at all.
If one compile opendkim + libunbound that's the way:

    $ cat /tmp/opendkim.conf
        ResolverConfiguration /tmp/unbound.conf

    $ cat /tmp/unbound.conf
        forward-zone:
            name: "."
            forward-addr: 2001:4860:4860::8888
        server:
            trust-anchor: ". DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"

    $ /usr/sbin/opendkim-testkey -v -v -v -d sys4.de -s p-sys4-de-201501 -x /tmp/opendkim.conf
    opendkim-testkey: checking key 'p-sys4-de-201501._domainkey.sys4.de'
    opendkim-testkey: key secure
    opendkim-testkey: key OK

Andreas
Received on Sun Dec 25 2016 - 21:54:09 PST

This archive was generated by hypermail 2.3.0 : Sun Dec 25 2016 - 22:00:00 PST