I am using your services as a Secondary MX and I have recently been
experimenting with implementing domainkeys for my domain. Currently
I have it working in test mode and I can validate incoming mail correctly
that comes straight to my primary mx, however, I am finding that mail
that goes through your mail servers is failing to validate to to the addition
of the X-Rollernet-Abuse headers you are adding. The problem is that
you are adding them to the bottom of the headers which is part of the
e-mail that is signed, therefore breaking the signature. Every line after
the Domainkey-signature header is part of the signed e-mail and should
not be touched. If you could move your headers to some place before
the domainkey-signature header it will allow me to validate all incoming
mail with domainkeys. I recommend adding them either just above the
last received line before you add yours, or just below the return-path as
these places will always be above the signature.
DomainKeys Fix
Moderator: Moderators
-
- Site Admin
- Posts: 598
- Joined: Wed Nov 17, 2004 10:05 pm
- Location: Nevada
- Contact: