Inbound DKIM check

[hansmannaerts]

Hi,

Are there any plans to check DKIM on inbound mails?

Kind regards, Hans Mannaerts

[Pro]

Hi Hans, no, there are no specific plans for that feature. I don't have enough time to develop new features for dkim-exchange, but Pull Requests are always welcome.

[rbfajardo]

MimeKit supports verifying DKIM signatures if anyone is willing to invest time in this.

Source: https://github.com/jstedfast/MimeKit/blob/master/README.md

Verifying DKIM Signatures

Verifying DKIM signatures is slightly more involved than creating them because you'll need to write a custom implementation of the IDkimPublicKeyLocator interface. Typically, this custom class will need to download the DKIM public keys as they are requested by MimeKit during verification of DKIM signature headers.

Once you've implemented a custom IDkimPublicKeyLocator, verifying signatures is fairly trivial:

var dkim = message.Headers[HeaderId.DkimSignature];

if (message.Verify (dkim, locator)) { // the DKIM-Signature header is valid! } else { // the DKIM-Signature is invalid }

[Pro]

In progress, still needs some work: https://github.com/Pro/dkim-exchange/tree/feature/dkim-verify

[ashum81]

Hello. What about verify feature? Spammers is winning now.

[rbfajardo]

Hello. What about verify feature? Spammers is winning now.

If you can merge my pull request and compile, then you have a working verifier.

https://github.com/Pro/dkim-exchange/pull/227/commits/a36ed3bc6879ceb7f4990eeb0dc149d27ca3b7ef

[shubell]

any plans to merge this to main build?

[gbusoni]

any plans to merge this to main build?

quote :)

[shubell]

I implemented a Spamassassin Agent for Microsoft Exchange Server and noticed that is als has the ability to check dkim signatures https://shubell.wordpress.com/2022/10/28/spam-filter-for-microsoft-exchange/