PSCS Wiki

User Tools

Site Tools

Trace:
how_to:signing_outgoing_mail_with_dkim

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
how_to:signing_outgoing_mail_with_dkim [2015/12/04 09:28] paulhow_to:signing_outgoing_mail_with_dkim [2020/07/16 19:58] paul
Line 7: Line 7:
 To be able to do this yourself, you need to have access to the DNS server for your domain. This might be your own DNS server, or one provided by your domain registry.  To be able to do this yourself, you need to have access to the DNS server for your domain. This might be your own DNS server, or one provided by your domain registry. 
  
-Now you need to generate a public key to put into a TXT record for your domain. To do this, search for a DKIM key generator, like [[http://dkimcore.org]], and enter the domain you want to put DKIM onto. This will generate a public key and a private key, and also a selector. The selector will look something like **<number>.<domain name>**.+Now you need to generate a public key to put into a TXT record for your domain. To do this, search for a DKIM key generator, like [[http://dkimcore.org]], and enter the domain you want to put DKIM onto. This will generate a public key and a private key, and also a selector. The selector generated by dkimcore.org will look something like **<number>.<domain name>**, but you can actually use any selector name you wish.
  
 On the DNS server, create a new TXT record, with a host name of the <selector>._domainkey.<domain name> - for instance **1532654.example._domainkey.example.com**. Copy the public key from the key generator, and paste it into the TXT record's data. Remember to remove the speech marks and any spaces in the key. Apply the changes on the DNS server. On the DNS server, create a new TXT record, with a host name of the <selector>._domainkey.<domain name> - for instance **1532654.example._domainkey.example.com**. Copy the public key from the key generator, and paste it into the TXT record's data. Remember to remove the speech marks and any spaces in the key. Apply the changes on the DNS server.
Line 17: Line 17:
 Now, when you send a message through your VPOP3 server from the appropriate domain, VPOP3 will generate a DKIM signature for the message.  Now, when you send a message through your VPOP3 server from the appropriate domain, VPOP3 will generate a DKIM signature for the message. 
  
 +====Multiple domains====
 If you can send mail from several different domains, just have several different domainkey_.....key files in the VPOP3 directory and VPOP3 will choose between them as appropriate. If there isn't a domainkey_.....key file for a particular sender, then VPOP3 will not generate a DKIM signature for that message. If you can send mail from several different domains, just have several different domainkey_.....key files in the VPOP3 directory and VPOP3 will choose between them as appropriate. If there isn't a domainkey_.....key file for a particular sender, then VPOP3 will not generate a DKIM signature for that message.
 +
 +Note that the //selector// must be the same for all domains, so rename the .key files and DNS hostnames as appropriate. The selector can be any text that is a valid DNS host name, so it can be random text, or something simple like 's1' or whatever you prefer. You should not reuse selector names as that can cause confusion if a signing certificate changes but the selector is the same.
how_to/signing_outgoing_mail_with_dkim.txt · Last modified: 2020/07/22 11:32 by paul

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki