Hi John,
No, not yet! I was looking for a configuration option to disable
DKIM. I found this
dkim DKIM status (if build with DKIM support). Possible values
are pass, fail, unknown, error, and none
in the man file. But that seemed more like an evaluation than an
option (status?)? How would configuring it work?
Something like
dacl greylist dkim outlook.com none
or
racl greylist dkim outlook.com none
??
Completely disabling DKIM evaluation for all domains is acceptable
too, don't need milter-greylist to check it for me.
Thanks
Stefan
Hi Stefan
Have you tried to set dkim to none in the configuration file?
BestJohn
Stavefejl og lignende krediteres min Samsung Galaxy 8.
-------- Oprindelig besked --------Fra: "Stefan Suurmeijer stefan@raptorweb.nl [milter-greylist]" <milter-greylist@yahoogroups.com>Dato: 21/11/2018 17.36 (GMT+08:00)Emne: Re: [milter-greylist] Weird problem with Microsoft domains
Hi Atilla,
DNS isn't the issue. Apparently nslookup (or my command) was the issue there, since:
root@myhost:~# dig +short txt selector1._domainkey.outbound.protection.outlook.com.
"v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWyktrIL8DO/+UGvMbv7cPd/Xogpbs7pgVw8y9ldO6AAMmg8+ijENl/c7Fb1MfKM7uG3LMwAr0dVVKyM+mbkoX2k5L7lsROQr0Z9gGSpu7xrnZOa58+/pIhd2Xk/DFPpa5+TKbWodbsSZPRN8z0RY5x59jdzSclXlEyN9mEZdmOiKTsOP6A7vQxfSya9jg5" "N81dfNNvP7HnWejMMsKyIMrXptxOhIBuEYH67JDe98QgX14oHvGM2Uz53if/SW8MF09rYh9sp4ZsaWLIg6T343JzlbtrsGRGCDJ9JPpxRWZimtz+Up/BlKzT6sCCrBihb/Bi3pZiEBB4Ui/vruL5RCQIDAQAB;n=2048,1452627113,1468351913"
So with dig I do get the DKIM key. And my SPAMD milter also checks DKIM and says "DKIM valid". The strange part is that with the same nslookup sequence on for example gmail I don't get the same issue, but anyway, apparently it isn't the reason for milter-greylist to complain. Which means I still have no idea. Every other domain is working fine, but all Microsoft domains get a "retry later" every single time they connect.
I'm running Ubuntu 18.04, sendmail, milter-greylist, clamav-milter and spamasassin-milter.
Anyone have any ideas?
KR
Stefan
On 11/21/18 9:02 AM, 'Bruncsak, Attila' attila.bruncsak@itu.int [milter-greylist] wrote:
> > selector1._domainkey.outbound.protection.outlook.com
> ;; Truncated, retrying in TCP mode.
> Server: 127.0.0.53
> Address: 127.0.0.53#53
>
> Non-authoritative answer:
> *** Can't find selector1._domainkey.outbound.protection.outlook.com: No answer
You must have an issue with the domain name resolution. Try to fix it. For me it just works:
$ dig +short txt selector1._domainkey.outbound.protection.outlook.com.
;; Truncated, retrying in TCP mode.
"v=DKIM1\;k=rsa\;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWyktrIL8DO/+UGvMbv7cPd/Xogpbs7pgVw8y9ldO6AAMmg8+ijENl/c7Fb1MfKM7uG3LMwAr0dVVKyM+mbkoX2k5L7lsROQr0Z9gGSpu7xrnZOa58+/pIhd2Xk/DFPpa5+TKbWodbsSZPRN8z0RY5x59jdzSclXlEyN9mEZdmOiKTsOP6A7vQxfSya9jg5" "N81dfNNvP7HnWejMMsKyIMrXptxOhIBuEYH67JDe98QgX14oHvGM2Uz53if/SW8MF09rYh9sp4ZsaWLIg6T343JzlbtrsGRGCDJ9JPpxRWZimtz+Up/BlKzT6sCCrBihb/Bi3pZiEBB4Ui/vruL5RCQIDAQAB\;n=2048,1452627113,1468351913"
$
-- ================================================================ Stefan Suurmeijer Raptor Network & Web solutions Woldweg 161a NL-9606 PD Kropswolde, The Netherlands tel: (+31) 50 363 9215 / (+31) 6 52 067 168 (cell) E-mail: stefan@raptorweb.nl ================================================================ PGP fingerprint: 2CC6 5313 2F58 862F 1542 AECF 2385 6F8A BC45 9F86 Always acknowledge a fault. This will throw those in authority off their guard and give you an opportunity to commit more - Mark Twain
-- ================================================================ Stefan Suurmeijer Raptor Network & Web solutions Woldweg 161a NL-9606 PD Kropswolde, The Netherlands tel: (+31) 50 363 9215 / (+31) 6 52 067 168 (cell) E-mail: stefan@raptorweb.nl ================================================================ PGP fingerprint: 2CC6 5313 2F58 862F 1542 AECF 2385 6F8A BC45 9F86 Always acknowledge a fault. This will throw those in authority off their guard and give you an opportunity to commit more - Mark Twain