DevHeads.net

Postings by Janis

Re: OpenDKIM not signing

What's your key-size?
My DNS provider does not support 2048, I found it out the hard way. 1024
seems to be the most popular size and google demands at least 1024.
Ounce you get the signing working you can regen a 2048 and check if you
can feed it in DNS TXT, but for first testing stick to 1024

Postfix users receive spam pretending to be sent from their accounts.

Postfix users receive spam pretending to be sent from their accounts.

in main.cf I have put:
smtpd_sender_login_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf,
mysql:/etc/postfix/mysql_virtual_alias_maps.cf

smtpd_sender_restrictions = permit_mynetworks,
permit_sasl_authenticated,
reject_sender_login_mismatch,

I also have extensive rbl and other spam checks in main.cf which work, but
this slips through it anyway (see msg source)
*If I test it from my other server *

root@othermail:~# mail -s test1 -a "From: ... at mydomain dot tld"
... at mydomain dot t