Rspamd dkim spf check incoming emails

Discussion in 'General' started by Nikolay Orlov, Apr 14, 2020.

  1. Nikolay Orlov

    Nikolay Orlov New Member

    how to configure postfix to enable dkim and spf test for all incoming emails. Outgoing signed well.
     
  2. Taleman

    Taleman Well-Known Member HowtoForge Supporter

  3. Nikolay Orlov

    Nikolay Orlov New Member

    I think it will be better, so I deed all necessary things to set up dkim and spf to prevent my mails go to spam, now a want protect my server
     
  4. Steini86

    Steini86 Active Member

  5. Nikolay Orlov

    Nikolay Orlov New Member

    Authentication-Results: mediateka.advocatorb.ru;
    dkim=temperror (DNS error when getting key) header.d=yandex.ru header.s=mail header.b=oW3s9HPi;
    spf=temperror (mediateka.advocatorb.ru: error in processing during lookup of [email protected]: DNS error) [email protected]
     
  6. Steini86

    Steini86 Active Member

    Open rspamd web interface and have a look at the mail what policies where used.
    Go to the Symbols tab and search for dkim. Adjust the score to your needs.
     
  7. Jesse Norell

    Jesse Norell ISPConfig Developer ISPConfig Developer

    Maybe I'm off (I don't actually have rspamd in use yet), but that header indicates both dkim and spf failed due to DNS lookup failures, does it not? Perhaps you should troubleshoot DNS from your mail server.
     
    Th0m likes this.
  8. Nikolay Orlov

    Nikolay Orlov New Member

  9. Steini86

    Steini86 Active Member

    I think it is a problem. Make sure you have unbound (or other) installed and its working.
    ispc does nothing "directly" with dkim. It configures rspamd to take care of that.
    Then you have installed opendkim and messed up your system. I thought you are using rspamd, because that is what was in the thread title. There are several ways to achieve the same thing. Now you have two of them bot they don't work in parallel. I can't help you with that, you first need a clean setup
     
  10. Nikolay Orlov

    Nikolay Orlov New Member

    I made clean setup with amavis, then change it with Rspamd instructions in Howtoforge , then I found that dkim doesn't work it cat sign but doesn't check incoming emails. How to config Rspamd to check incoming
     
  11. Steini86

    Steini86 Active Member

    It is working in the standard setup. I have shown you above how to change the impact of the test on the mail.
    What you have shown is that your check is not working, because local DNS lookup is not working ("DNS error when getting key"). What DKIM does is that the public key is distributed via DNS. If your server can't get DNS information it cannot check DKIM. Fix your DNS lookup!
     
  12. Nikolay Orlov

    Nikolay Orlov New Member

    I understand you, try to solve that problem
     
    Steini86 likes this.

Share This Page