[Rspamd-Users] remove smtp.auth from header without breaking dkim
Alex JOST
jost+lists at dimejo.at
Mon May 13 07:30:24 UTC 2019
Am 12.05.2019 um 22:57 schrieb L. Jankok:
> Op zo 12 mei 2019 om 19:52 schreef Ralph Seichter <abbot at monksofcool.net>:
>
>> * L. Jankok:
>>
>>> In the "ARC-Authentication-Results:" header I want
>>> "smtp.auth=username at domain" removed for security reasons, but without
>>> breaking dkim signing for authenticated users.
>>
>> You can have Postfix strip headers during the submission cleanup phase,
>> before DKIM signing happens (see "cleanup_service_name").
>>
>> -Ralph
>> --
>>
>>
> That is the first thing I did, but removing the header before rspamd make
> dkim not knowing for which domain to sign the mail.
>
You can configure which domain is used by rspamd to sign messages.
# Domain to use for DKIM signing: can be "header" (MIME From),
# "envelope" (SMTP From) or "auth" (SMTP username)
use_domain = "envelope";
https://rspamd.com/doc/modules/dkim_signing.html#configuration
--
Alex JOST
More information about the Users
mailing list