opendkim: Configure signing parameters

We use a hard-coded key selector of "default" and store keyfiles in the
dkim volume.  `Domain` indicates the mail sources for which mail should
be signed rather than verified.

Because we are using ENV_VIRTUAL_DOMAINS in this context, we now require
the variable to be comma separated (no whitespace), as that is what this
file requires.  All previous usages of ENV_VIRTUAL_DOMAINS are
compatible with comma separation.

Signed-off-by: Malfurious <m@lfurio.us>

2 files changed, 4 insertions, 4 deletions

diff --git a/docker-compose.yml b/docker-compose.yml
index 0c741b6..69ac500 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -9,7 +9,7 @@ services:
         # CONFIGURE ME!
         # The FQDN this mail server identifies itself as
         HOSTNAME: "YOUR-DOMAIN.example"
-        # All domain names this server accepts mail for (space separated)
+        # All domain names this server accepts mail for (comma separated)
         VIRTUAL_DOMAINS: "YOUR-DOMAIN.example"
 
     restart: "always"
diff --git a/opendkim/opendkim.conf b/opendkim/opendkim.conf
index 50fc09a..39072d2 100644
--- a/opendkim/opendkim.conf
+++ b/opendkim/opendkim.conf
@@ -19,9 +19,9 @@ OversignHeaders         From
 # for domain "example.com" with selector "2020" (2020._domainkey.example.com),
 # using the private key stored in /etc/dkimkeys/example.private. More granular
 # setup options can be found in /usr/share/doc/opendkim/README.opendkim.
-#Domain                 example.com
-#Selector               2020
-#KeyFile                /etc/dkimkeys/example.private
+Domain                  ENV_VIRTUAL_DOMAINS
+Selector                default
+KeyFile                 /opendkim/default.private
 
 # In Debian, opendkim runs as user "opendkim". A umask of 007 is required when
 # using a local socket with MTAs that access the socket as a non-privileged