OpenDKIM¶

DKIM-Signierung.

Installation¶

sudo apt install opendkim opendkim-tools

Konfiguration¶

sudo nano /etc/opendkim.conf

Syslog                  yes
UMask                   002
Canonicalization        relaxed/simple
ExternalIgnoreList      /etc/opendkim/TrustedHosts
InternalHosts           /etc/opendkim/TrustedHosts
KeyTable                /etc/opendkim/KeyTable
SigningTable            refile:/etc/opendkim/SigningTable
Mode                    sv
PidFile                 /var/run/opendkim/opendkim.pid
Socket                  inet:8891@localhost

Trusted Hosts¶

sudo nano /etc/opendkim/TrustedHosts

127.0.0.1
localhost
192.168.0.0/16
*.example.com

Key Table¶

sudo nano /etc/opendkim/KeyTable

mail._domainkey.example.com example.com:mail:/etc/opendkim/keys/example.com/mail.private

Signing Table¶

sudo nano /etc/opendkim/SigningTable

*@example.com mail._domainkey.example.com

Schlüssel generieren¶

sudo mkdir -p /etc/opendkim/keys/example.com
sudo opendkim-genkey -s mail -d example.com -D /etc/opendkim/keys/example.com
sudo chown opendkim:opendkim /etc/opendkim/keys/example.com/mail.private

DNS Record¶

sudo cat /etc/opendkim/keys/example.com/mail.txt

Service starten¶

sudo systemctl restart opendkim
sudo systemctl enable opendkim

Zurück zur Mailserver-Übersicht