[Rspamd-Users] A Single DKIM Key Signing for Multiple Domains

Dismas Axel (Thomas) dismasc at protonmail.com
Tue Apr 9 08:00:52 UTC 2019

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Tuesday, April 9, 2019 2:51 PM, J. Fahrner via Users <users at lists.rspamd.com> wrote:

> Am 2019-04-09 09:35, schrieb Dismas Axel (Thomas) via Users:
> > All emails from @brand1.com and @brand2.com would also be signed with
> > mail._domainkey.maincorp.com. When you check with gmail it will tell
> > me that @brand1.com signed-by mailcorp.com and not brand1.com.
> Yes, that is what you did. But with a proper DMARC or ADSP policy, these
> mails would be treated as invalid.
> Why should someone trust a signature from maincorp.com in a mail from
> brand1.com?

Hi, J. Fahrner, I also implemented SPF, DKIM, and DMARC. As I always saw it on GMAIL and GSUITE, the three of them are always valid: SPF, DKIM, and DMARC. So far, I do not have problems with other mail servers recieving from ours, otherwise our users would have complained hard and many (believe me).

Thank you!

More information about the Users mailing list