[Rspamd-Users] A Single DKIM Key Signing for Multiple Domains
Dismas Axel (Thomas)
dismasc at protonmail.com
Tue Apr 9 08:00:52 UTC 2019
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Tuesday, April 9, 2019 2:51 PM, J. Fahrner via Users <users at lists.rspamd.com> wrote:
> Am 2019-04-09 09:35, schrieb Dismas Axel (Thomas) via Users:
>
> > All emails from @brand1.com and @brand2.com would also be signed with
> > mail._domainkey.maincorp.com. When you check with gmail it will tell
> > me that @brand1.com signed-by mailcorp.com and not brand1.com.
>
> Yes, that is what you did. But with a proper DMARC or ADSP policy, these
> mails would be treated as invalid.
> Why should someone trust a signature from maincorp.com in a mail from
> brand1.com?
Hi, J. Fahrner, I also implemented SPF, DKIM, and DMARC. As I always saw it on GMAIL and GSUITE, the three of them are always valid: SPF, DKIM, and DMARC. So far, I do not have problems with other mail servers recieving from ours, otherwise our users would have complained hard and many (believe me).
Thank you!
More information about the Users
mailing list