Sign emails with OpenDkim + Postfix + Ubuntu 10.04 64x

[clegends]

Right, I've fixed my dns issues. Problem was my iptables firewall... I had forgotten to open port UDP 53 for DNS when I last reconfigured my firewall.

Now the issue is with dkim, and specifically error messages I get after following your tutorial. When I put this in my db.curiouslegends.com.au file:

Code:

2010._domainkey.curiouslegends.com.au. IN   TXT "k=rsa; t=y; p=(real key)"

I get this error:

Code:

curiouser@curioushost:/etc/mail$ named-checkzone curiouslegends.com.au /etc/bind/db.curiouslegends.com.au
dns_rdata_fromtext: /etc/bind/db.curiouslegends.com.au:26: unbalanced quotes
dns_master_load: /etc/bind/db.curiouslegends.com.au:27: label too long
dns_master_load: /etc/bind/db.curiouslegends.com.au:28: label too long
dns_master_load: /etc/bind/db.curiouslegends.com.au:29: syntax error
zone curiouslegends.com.au/IN: loading from master file /etc/bind/db.curiouslegends.com.au failed: unbalanced quotes
zone curiouslegends.com.au/IN: not loaded due to errors.

Those lines are specific top the above TXT. Then when I run dig I get:

Code:

curiouser@curioushost:/etc/mail$ dig @ns.curiouslegends.com.au TXT curiouslegends.com.au

; <<>> DiG 9.7.0-P1 <<>> @ns.curiouslegends.com.au TXT curiouslegends.com.au
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 64859
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;curiouslegends.com.au.		IN	TXT

;; Query time: 1 msec
;; SERVER: 124.254.118.5#53(124.254.118.5)
;; WHEN: Tue Oct 19 17:17:33 2010
;; MSG SIZE  rcvd: 39

I've now removed the TXT entry above, and now named-checkzone loads fine, and with dig I get:

Code:

curiouser@curioushost:/etc/mail$ dig @ns.curiouslegends.com.au TXT curiouslegends.com.au

; <<>> DiG 9.7.0-P1 <<>> @ns.curiouslegends.com.au TXT curiouslegends.com.au
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5374
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 4, ADDITIONAL: 1

;; QUESTION SECTION:
;curiouslegends.com.au.		IN	TXT

;; ANSWER SECTION:
curiouslegends.com.au.	604800	IN	TXT	"ns2.xname.org."
curiouslegends.com.au.	604800	IN	TXT	"v=spf1 a mx ~all"
curiouslegends.com.au.	604800	IN	TXT	"ns0.xname.org."
curiouslegends.com.au.	604800	IN	TXT	"ns1.xname.org."

;; AUTHORITY SECTION:
curiouslegends.com.au.	604800	IN	NS	ns.curiouslegends.com.au.
curiouslegends.com.au.	604800	IN	NS	ns0.xname.org.
curiouslegends.com.au.	604800	IN	NS	ns2.xname.org.
curiouslegends.com.au.	604800	IN	NS	ns1.xname.org.

;; ADDITIONAL SECTION:
ns.curiouslegends.com.au. 604800 IN	A	124.254.118.5

;; Query time: 1 msec
;; SERVER: 124.254.118.5#53(124.254.118.5)
;; WHEN: Tue Oct 19 17:29:57 2010
;; MSG SIZE  rcvd: 245

Can you tell me what's going wrong here? It seems specific to your guide for opendkims. Thanks.

[clegends]

Bump....

Could you please help? The issue I'm having seems specific to your guide now that I've fixed my DNS issues. I'd really appreciate your help and time. Thanks.

[Arenlor]

I can't guarantee anything, but I think you accidentally copied it across multiple lines instead of on only one line.

[clegends]

I totally don't understand that... is this related to this post? Thanks anyway for your reply.

[masgeeks]

Hi - I had followed the instructions in this post last fall for Maverick x64 for Postfix with OpenDKIM worked like a charm...

Does anyone know if it will work with Natty x64...???

I've set up a new Natty x64 VM and will be transferring my hosting from Maverick x64 to this new VM, so just doing a little home work right now on everything.

If anyone knows if the instructions for Maverick x64 for OpenDKIM works with Natty x64 would sure appreciate some feedback...

Thanks in advance...!!!

[TheGrave]

Sign emails with OpenDkim + Postfix + Ubuntu 10.04 64x

How-to implement a domain key signature using Postfix Ubuntu based email server. Implementing a domain key will help your outgoing email not being marked as SPAM by the receiving servers that implement DKIM signatures verification., i.e. Yahoo, Gmail, etc.

FULL HOW-TO

Link is dead. Any mirrors?

[howefield]

Old thread closed.