为什么不使用EXIM OpenDKIM服务?
问题描述:
我试图配置EXIM + OpenDKIM在CentOS的7 ... (一切从最新的版本库)为什么不使用EXIM OpenDKIM服务?
我用这个说明配置系统:https://www.rosehosting.com/blog/how-to-install-and-configure-dkim-with-opendkim-and-exim-on-a-centos-7-vps/,布提没有使用默认的选择,我试图用独特。
发送邮件没有DKIM签名,我在EXIM使用此配置:
remote_smtp:
driver = smtp
DKIM_DOMAIN = $sender_address_domain
DKIM_SELECTOR = 20170915exim
DKIM_PRIVATE_KEY = ${if exists{/etc/opendkim/keys/$sender_address_domain/20170915exim}{/etc/opendkim/keys/$sender_address_domain/20170915exim}{0}}
DKIM_CANON = relaxed
DKIM_STRICT = 0
与此,在/ etc/opendkim:
.
├── keys
│ └── valami.com
│ ├── 20170915exim
│ └── 20170915exim.txt
├── KeyTable
├── SigningTable
└── TrustedHosts
但是,当我发送邮件(带邮件,或通过telnet或任何其他),EXIM不使用OpenDKIM。当然,opendkim侦听端口:
tcp 0 0 127.0.0.1:8891 0.0.0.0:* LISTEN 6663/opendkim
当我发送邮件fromlocal主机外:
2017-09-15 15:53:20 1dsr3M-0005fK-Ul <= [email protected] H=localhost [127.0.0.1] P=smtp S=341
2017-09-15 15:53:21 1dsr3M-0005fK-Ul => [email protected] R=dnslookup T=remote_smtp H=gmail-smtp-in.l.google.com [74.125.133.26] X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=yes K C="250 2.0.0 OK o1si854413wrg.487 - gsmtp"
2017-09-15 15:53:21 1dsr3M-0005fK-Ul Completed
为什么不叫进出口守护进程的OpenDKIM接口?
感谢您的帮助!
答
我解决了!
我必须添加一个“dkim_sign_headers”变量配置文件...
remote_smtp:
driver = smtp
dkim_domain = $sender_address_domain
dkim_selector = 20170915exim
dkim_private_key = ${if exists{/etc/opendkim/keys/$dkim_domain/$dkim_selector}{/etc/opendkim/keys/$dkim_domain/$dkim_selector}{0}}
dkim_canon = relaxed
dkim_strict = 0
dkim_sign_headers = subject:to:from
FYI:进出口母鹿不需要OpenDKIM在所有的签名过程;实际上,您不需要保持OpenDKIM运行。不过,仍然适用于生成密钥对。 – DaSourcerer