mailnode/opendkim, branch master Custom email service opendkim: Check additional headers to determine sender 2024-07-13T07:01:46+00:00 Malfurious m@lfurio.us 2024-07-13T07:01:46+00:00 9cfad5e40a180cf9df064de352d04e2935020e3d Despite the default semantics for `InternalHosts` option in opendkim.conf, OpenDKIM seems to generally only consider the labeled sender of a message when deciding whether to sign a message or validate. This means that previously, when a message was sent to a mailing list from a domain outside of the mailnode host, the copies of this message that the list sent out did not get a signature applied to them. Since we will usually be injecting headers for mailing list information, we can search these first to determine the message envelope sender. X-Mailing-List will be the list's full address. Sender is added just in case. Advice is taken from the "Mailing Lists" section of http://www.opendkim.org/opendkim-README Signed-off-by: Malfurious <m@lfurio.us> 
Despite the default semantics for `InternalHosts` option in
opendkim.conf, OpenDKIM seems to generally only consider the labeled
sender of a message when deciding whether to sign a message or validate.

This means that previously, when a message was sent to a mailing list
from a domain outside of the mailnode host, the copies of this message
that the list sent out did not get a signature applied to them.

Since we will usually be injecting headers for mailing list information,
we can search these first to determine the message envelope sender.
X-Mailing-List will be the list's full address.  Sender is added just in
case.  Advice is taken from the "Mailing Lists" section of
http://www.opendkim.org/opendkim-README

Signed-off-by: Malfurious <m@lfurio.us>
opendkim: Disable syslog 2024-07-09T19:50:39+00:00 Malfurious m@lfurio.us 2024-07-05T09:47:06+00:00 add7158e2817dbfbf4d46766dd4200061416d05b Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
opendkim: Configure postfix milter socket 2024-07-09T19:50:39+00:00 Malfurious m@lfurio.us 2024-07-05T10:54:58+00:00 053ecfdb5110b2a0eda01dfe78c62b446fc4866b Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
opendkim: Configure signing parameters 2024-07-09T19:50:39+00:00 Malfurious m@lfurio.us 2024-07-05T10:04:49+00:00 335b9f49532ce012b6da7dc404aff1dee55bfa21 We use a hard-coded key selector of "default" and store keyfiles in the dkim volume. `Domain` indicates the mail sources for which mail should be signed rather than verified. Because we are using ENV_VIRTUAL_DOMAINS in this context, we now require the variable to be comma separated (no whitespace), as that is what this file requires. All previous usages of ENV_VIRTUAL_DOMAINS are compatible with comma separation. Signed-off-by: Malfurious <m@lfurio.us> 
We use a hard-coded key selector of "default" and store keyfiles in the
dkim volume.  `Domain` indicates the mail sources for which mail should
be signed rather than verified.

Because we are using ENV_VIRTUAL_DOMAINS in this context, we now require
the variable to be comma separated (no whitespace), as that is what this
file requires.  All previous usages of ENV_VIRTUAL_DOMAINS are
compatible with comma separation.

Signed-off-by: Malfurious <m@lfurio.us>
opendkim: Add default config file 2024-07-09T19:50:39+00:00 Malfurious m@lfurio.us 2024-06-30T11:53:42+00:00 067a9c14c41022f5a93846a5b4c8dba4d5030ec1 Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>