From 335b9f49532ce012b6da7dc404aff1dee55bfa21 Mon Sep 17 00:00:00 2001
From: Malfurious <m@lfurio.us>
Date: Fri, 5 Jul 2024 06:04:49 -0400
Subject: opendkim: Configure signing parameters

We use a hard-coded key selector of "default" and store keyfiles in the
dkim volume.  `Domain` indicates the mail sources for which mail should
be signed rather than verified.

Because we are using ENV_VIRTUAL_DOMAINS in this context, we now require
the variable to be comma separated (no whitespace), as that is what this
file requires.  All previous usages of ENV_VIRTUAL_DOMAINS are
compatible with comma separation.

Signed-off-by: Malfurious <m@lfurio.us>
---
 opendkim/opendkim.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'opendkim')

diff --git a/opendkim/opendkim.conf b/opendkim/opendkim.conf
index 50fc09a..39072d2 100644
--- a/opendkim/opendkim.conf
+++ b/opendkim/opendkim.conf
@@ -19,9 +19,9 @@ OversignHeaders         From
 # for domain "example.com" with selector "2020" (2020._domainkey.example.com),
 # using the private key stored in /etc/dkimkeys/example.private. More granular
 # setup options can be found in /usr/share/doc/opendkim/README.opendkim.
-#Domain                 example.com
-#Selector               2020
-#KeyFile                /etc/dkimkeys/example.private
+Domain                  ENV_VIRTUAL_DOMAINS
+Selector                default
+KeyFile                 /opendkim/default.private
 
 # In Debian, opendkim runs as user "opendkim". A umask of 007 is required when
 # using a local socket with MTAs that access the socket as a non-privileged
-- 
cgit v1.2.3