DevHeads.net

Outbound DKIM signing milter options for Postfix?

I'm setting up outbound DKIM signing for a Postfix instance.

I'd prefer something other that OpenDKIM or Amavisd.

Other than DIY, is there a solid/stable milter for outbound signing folks are successfully using with Postfix?

Appreciate any references!

Comments

Re: Outbound DKIM signing milter options for Postfix?

By B. Reino at 10/11/2018 - 03:48

On 2018-10-11 04:08, <a href="mailto:pg151@dev-mail.net">pg151@dev-mail.net</a> wrote:
I can recommend rspamd. The DKIM module is very flexible, supports
multiple domains, etc.

Cheers.

Re: Outbound DKIM signing milter options for Postfix?

By Dominic Raferd at 10/11/2018 - 04:21

I have had no problems with opendkim and I like that it plays well with
opendmarc. 'do one thing and do it well' + 'programs should work together'.
YMMV.

Re: Outbound DKIM signing milter options for Postfix?

By Scott Kitterman at 10/10/2018 - 22:16

On October 11, 2018 2:08:09 AM UTC, <a href="mailto:pg151@dev-mail.net">pg151@dev-mail.net</a> wrote:
I gave up on OpenDKIM and wrote my own:

<a href="https://launchpad.net/dkimpy-milter" title="https://launchpad.net/dkimpy-milter">https://launchpad.net/dkimpy-milter</a>

I need to update the readme. The ed25119 signature version it supports is what ended up in RFC 8463.

Scott K

Re: Outbound DKIM signing milter options for Postfix?

By pg151 at 10/10/2018 - 22:23

On Wed, Oct 10, 2018, at 7:16 PM, Scott Kitterman wrote:
Same here. Too many crashes, and too little response. Moved on.

Gr8, thx. I've used a number of your products (thx agn!), but missed this completly!

Now to trundle off to see if your dkimpy supports/uses Signing/Key tables for multi-domain support ...

Re: Outbound DKIM signing milter options for Postfix?

By pg151 at 10/10/2018 - 23:52

On Wed, Oct 10, 2018, at 7:23 PM, <a href="mailto:pg151@dev-mail.net">pg151@dev-mail.net</a> wrote:
appears that's a "no" for now ...

"...
domains is implied by the lines in that file. [SigningTable NOT IMPLEMENTED] <<<<<<

This parameter is ignored if a KeyTable is defined. [KeyTable NOT IMPLEMENTED] <<<<<<
..."