Author Topic: [BUG] 2times DKIM Signing  (Read 4742 times)

0 Members and 1 Guest are viewing this topic.

Offline
***
[BUG] 2times DKIM Signing
« on: August 09, 2018, 03:32:51 AM »
Hello,

When you enable  "AntiSpam/AntiVirus (recommended):  ClamAV, Amavis & Spamassassin, Requires 1Gb+ RAM"

The mail send sign DKIM key two times. Below is log

Code: [Select]
cat /var/log/maillog
Quote

Aug  8 23:20:11 server1 postfix/smtpd[22593]: connect from localhost[127.0.0.1]
Aug  8 23:20:11 server1 postfix/smtpd[22593]: 72D88E07B0: client=localhost[127.0.0.1], sasl_method=LOGIN, sasl_username=email@yourdomain.com
Aug  8 23:20:11 server1 postfix/cleanup[22646]: 72D88E07B0: message-id=<ef240cb8f48b4c21dd3a3605d00c966b@yourdomain.com>
Aug  8 23:20:11 server1 opendkim[21907]: 72D88E07B0: DKIM-Signature field added (s=default, d=yourdomain.com)
Aug  8 23:20:11 server1 postfix/qmgr[21897]: 72D88E07B0: from=<email@yourdomain.com>, size=589, nrcpt=1 (queue active)
Aug  8 23:20:11 server1 postfix/smtpd[22593]: disconnect from localhost[127.0.0.1]
Aug  8 23:20:12 server1 postfix/smtpd[22696]: connect from unknown[127.0.0.1]
Aug  8 23:20:12 server1 postfix/smtpd[22696]: 18D6CE07C1: client=unknown[127.0.0.1]
Aug  8 23:20:12 server1 postfix/cleanup[22646]: 18D6CE07C1: message-id=<ef240cb8f48b4c21dd3a3605d00c966b@yourdomain.com>
Aug  8 23:20:12 server1 opendkim[21907]: 18D6CE07C1: DKIM-Signature field added (s=default, d=yourdomain.com)
Aug  8 23:20:12 server1 postfix/qmgr[21897]: 18D6CE07C1: from=<email@yourdomain.com>, size=1408, nrcpt=1 (queue active)
Aug  8 23:20:12 server1 amavis[21744]: (21744-01) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1]:57904 <email@yourdomain.com> -> <test@gmail.com>, Message-ID: <ef240cb8f48b4c21dd3a3605d00c966b@yourdomain.com>, mail_id: 2a-USGxJx-nW, Hits: -1.099, size: 913, queued_as: 18D6CE07C1, dkim_sd=default:yourdomain.com, 591 ms
Aug  8 23:20:12 server1 postfix/smtp[22647]: 72D88E07B0: to=<test@gmail.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.71, delays=0.09/0/0.05/0.57, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 18D6CE07C1)
Aug  8 23:20:12 server1 postfix/qmgr[21897]: 72D88E07B0: removed
Aug  8 23:20:12 server1 postfix/smtp[22657]: 18D6CE07C1: to=<test@gmail.com>, relay=gmail-smtp-in.l.google.com[173.194.205.26]:25, delay=0.79, delays=0.05/0/0.56/0.18, dsn=2.0.0, status=sent (250 2.0.0 OK 1533784812 i3-v6si672583qkf.13 - gsmtp)
Aug  8 23:20:12 server1 postfix/qmgr[21897]: 18D6CE07C1: removed

Raw header of Gmail shows




Offline
***
Re: [BUG] 2times DKIM Signing
« Reply #1 on: August 09, 2018, 03:56:27 AM »
Workaround

Edit master.cf

Code: [Select]
nano /etc/postfix/master.cf
Find

Code: [Select]
-o smtpd_helo_restrictions=
Above add

Code: [Select]
-o smtpd_milters=
Image for verification



Now email will be signed only once with DKIM

Quote
Aug  8 23:49:35 server1 postfix/smtpd[23370]: connect from localhost[127.0.0.1]
Aug  8 23:49:35 server1 postfix/smtpd[23370]: C3301E07C4: client=localhost[127.0.0.1], sasl_method=LOGIN, sasl_username=email@yourdomain.com
Aug  8 23:49:35 server1 postfix/cleanup[23432]: C3301E07C4: message-id=<4f57aba6ac3dd13fe06212f4aa204ebb@bullten.network>
Aug  8 23:49:35 server1 opendkim[21907]: C3301E07C4: DKIM-Signature field added (s=default, d=bullten.network)
Aug  8 23:49:35 server1 postfix/qmgr[23356]: C3301E07C4: from=<email@yourdomain.com>, size=589, nrcpt=1 (queue active)
Aug  8 23:49:35 server1 postfix/smtpd[23370]: disconnect from localhost[127.0.0.1]
Aug  8 23:49:36 server1 postfix/smtpd[23440]: connect from unknown[127.0.0.1]
Aug  8 23:49:36 server1 postfix/smtpd[23440]: 620A6E07CC: client=unknown[127.0.0.1]
Aug  8 23:49:36 server1 postfix/cleanup[23432]: 620A6E07CC: message-id=<4f57aba6ac3dd13fe06212f4aa204ebb@bullten.network>
Aug  8 23:49:36 server1 postfix/qmgr[23356]: 620A6E07CC: from=<email@yourdomain.com>, size=1408, nrcpt=1 (queue active)
Aug  8 23:49:36 server1 postfix/smtpd[23440]: disconnect from unknown[127.0.0.1]
Aug  8 23:49:36 server1 amavis[21743]: (21743-04) Passed CLEAN {RelayedOutbound}, MYNETS LOCAL [127.0.0.1]:58264 <email@yourdomain.com> -> <test@gmail.com>, Message-ID: <4f57aba6ac3dd13fe06212f4aa204ebb@bullten.network>, mail_id: HhvnMyNkBtLg, Hits: -1.099, size: 913, queued_as: 620A6E07CC, dkim_sd=default:bullten.network, 470 ms
Aug  8 23:49:36 server1 postfix/smtp[23434]: C3301E07C4: to=<test@gmail.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.64, delays=0.11/0.05/0/0.47, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 620A6E07CC)
Aug  8 23:49:36 server1 postfix/qmgr[23356]: C3301E07C4: removed
Aug  8 23:49:36 server1 postfix/smtp[23441]: 620A6E07CC: to=<test@gmail.com>, relay=gmail-smtp-in.l.google.com[172.217.197.26]:25, delay=0.44, delays=0.01/0.05/0.27/0.11, dsn=2.0.0, status=sent (250 2.0.0 OK 1533786576 42-v6si5553573qvk.145 - gsmtp)
Aug  8 23:49:36 server1 postfix/qmgr[23356]: 620A6E07CC: removed