22 Dec
2014
22 Dec
'14
8:36 a.m.
On Mon, 22 Dec 2014 07:13:57 PM Russell Coker wrote:
Which messages are you referring to? The message I'm replying to has no DKIM headers.
The ones in your email that I replied to (and in the header of the email I'm replying to now). :-)
I thought DKIM was orthogonal to DNSSEC.
Not really. If you can fake someone's DNS then you can fake a DKIM record to allow forged signatures or fake the absence of DMARC etc records to allow unsigned mail through.
OK, to me that's orthogonal. They don't rely on them to function but help you have confidence in the results.
Anyway it's apparently only certain versions of OpenDKIM that give the error in question.
OK, good luck fixing it! -- Chris Samuel : http://www.csamuel.org/ : Melbourne, VIC