The mails from wordpress are not DKIM signed

[anmol26s]

Hi The mails send to user from wordpress don't have the DKIM signatures, because of which there is delivery problem for the mails. The rmilter should not sign the mail by default? If not, then how can I edit the wp-mail.php so that it signs the mails?

Thanks

links: https://github.com/louisameline/php-mail-signature

[alexAubin]

I'm not a mail expert, but naively I'd think this is not related to Wordpress. Did you check that other mails on your system are correctly DKIM signed ? Imho wordpress probably feeds the email it wants to send to postfix, then the mails are handled just like any other mail. It's not the role of wordpress or php to sign the email with DKIM, it's postfix/rmilter's job.

[polytan02]

Not sure how it is configured, but I had the same issue with nextcloud @maniackcrudelis To sort the problem, I had to configure nextcloud to stop sending emails using php mail() function and instead use smtp with starttls on port 587. This can only work for yunohost registered users, obviously.

[julienmalik]

We had the same problem with roundcube, and fixed it with what @polytan02 explains.

rmilter only signs outgoing emails when the sender is authenticated, so we need to use the postfix submission port 587, and authenticate with the yunohost user/password.

Seems like this is something that would deserve a fix in our rspamd/rmilter config to avoid having the problem with all php apps.

[anmol26s]

I am facing this problem in wordpress and on webtree (a genealogy application),which I have installed on custom webapp. I am not facing any problem with roundcube as @julienmalik indicated. Roundcube don't use the SMTP by default, as every other clients like outlook,Mozilla thunderbird uses? @julienmalik

This issue is there with the php sending independently(it would always require to manually configure DKIM ,so its not a work for php by default). In webtree there is an option to set SMTP for sending the emails instead of php mail function. In wordpress there would be a plugin to do this too. I think rspamd/rmilter should sign every mail by default as @julienmalik said.

[polytan02]

rmilter signs very emails sent from an authenticated user : php_mail() is not an authenticated user :)

Also, the 587 is the official secured port for sending emails.