DKIM signing doesn't work for locally submitted mail

Discussion in 'Installation/Configuration' started by fanto666, Feb 22, 2024.

  1. fanto666

    fanto666 Member

    Hello,

    when submitting mail locally e.g. via sendmail, the mail does not get DKIM-signed.

    This was already reported in old thread:
    https://forum.howtoforge.com/thread...ing-debian11-ispconfig-3-2-amavisd-new.89854/

    I believe the reason is that the default setting for content_filter is:

    content_filter = amavis:[127.0.0.1]:10024

    where amavis running on port 10024 is NOT considering mail as originating, port 10026 is used for originating mail.

    Shouldn't be port 10026 used in content_filter instead?

    Since filtering of all mail received via smtp(d) is driven by smtpd_sender_restrictions rules which override content_filter in either /etc/postfix/tag_as_originating.re or /etc/postfix/tag_as_foreign.re

    - I believe setting
    content_filter = amavis:[127.0.0.1]:10026


    as default would solve this issue.
    Does anyone see issues with this setting?
     
  2. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    This might not be the reply you want, but why are you sending locally in 2024? I would use SMTP for any script, app, etc...
     
  3. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    Does sending locally mean using from command line
    Code:
    sendmail [email protected] < /tmp/mail_content.txt
    Is it still locally when using commands mutt, mail and mailx?
     
  4. fanto666

    fanto666 Member

    These may be generated by cron jobs, php scripts using mail() command which still call /usr/sbin/sendmail.
    I guess even mail generated locally by postfix (DSN?).
    While it's possible to replace sendmail by ssmtp/msmtp, I guess it's still not standard.

    Yes, these still call /usr/sbin/sendmail by default.
     

Share This Page