I'm not sure what you're doing, but you show a piece of rspamd config
for your signing, while you claim to use dkimproxy_out. I haven't used
dkimproxy_out in a long time (basically since I wrote filter-dkimsign)
but last time I used dkimproxy_in it worked as expected for rsa.
Also note that dkimproxy doesn't have had a new release since 2011,
which doesn't have to mean anything, but is usually not a great sign.
If you really want to continue using dkimproxy I'd suggest running
dkimproxy_out on the shell:
/usr/local/bin/dkimproxy.out --conf_file=/etc/dkimproxy_out.conf
--user=_dkimproxy --group=_dkimproxy
and see what it spews out.
Personally I'd replace dkimproxy with either (filter-)respamd or
filter-dkimsign depending on your needs.
martijn@
On Sat, 2021-05-22 at 11:44 +0200, flipchan wrote:
> Hi all,
>
>
> I upgraded from 6.6 to 6.8 and dkim magically stopped appending the dkim
> signatures to my emails. I have tried to debug it but im not really
> getting anywhere. dkimproxy_out is running without complains.
>
> Does anyone see what im doing wrong?
>
>
> mail# cat /etc/mail/smtpd.conf
> table aliases file:/etc/mail/aliases
> #table other-relays file:/etc/mail/other-relays
>
> pki mail.example.com cert "/etc/ssl/mail.example.com.crt"
> pki mail.example.com key "/etc/ssl/private/mail.example.com.key"
>
> filter "rspamd" proc-exec "/usr/local/libexec/smtpd/filter-rspamd"
>
> listen on vio0 port 587 hostname example.com tls-require pki
> mail.example.com auth filter "rspamd"
> #mask-src
> listen on vio0 port 25 hostname example.com tls pki mail.example.com
> filter "rspamd"
> # auth-optional
>
> #action "mbox" mbox alias <aliases>
> #action "relay" relay
>
> #match for local action "mbox"
> #match for any action "relay"
> #match !from src <other-relays> mail-from "@example.com" for any \
> # reject
>
> listen on lo0 port 10028 tag DKIM
>
> action "mbox" mbox alias <aliases>
> action "relay" relay
> action "relay_dkim" relay host smtp://127.0.0.1:10027
> match from any for domain example.com action "mbox"
>
> match auth from any for any action "relay"
> match for local action "mbox"
> match tag DKIM for any action "relay"
> #match tag dkim for any action "relay"
> #match tag DKIM for any action "outbound"
> #match for any action relay_dkim
> match auth from any for any action "relay_dkim"
> mail#
> dkim_signing.conf redis.conf
> mail# cat /etc/rspamd/local.d/dkim_signing.conf
> domain {
> example.com {
> path = "/var/dkimproxy/default.private";
> selector = "default";
> }
> }
> mail# uname -a
> OpenBSD mail.firosolutions.com 6.8 GENERIC#5 amd64
>
>
>
> Thanks!
>
> Sincerely,
>
> Flipchan
>
