search

danisola / forward-cat

Forward Cat allows to create temporary email addresses so you can keep you personal address private
http://www.forward.cat
34 stars 9 forks source link

Bad DKIM signature #4

Open aleksandrs-ledovskis opened 9 years ago

aleksandrs-ledovskis commented 9 years ago 
Nov 28 16:03:13 foo postfix/cleanup[11111]: ABCDEF012: message-id=<16939981.5334.1448719382754.JavaMail.fwdcat@primary>
Nov 28 16:03:13 foo postfix/cleanup[11111]: ABCDEF012: milter-reject: END-OF-MESSAGE from forward.cat[107.170.17.71]: 5.7.0 bad DKIM signature data; from=<no-reply@forward.cat> to=<bar@example.com> proto=ESMTP helo=<primary>
danisola commented 9 years ago

Hi @aleksandrs-ledovskis, thanks for opening the issue!

Can you explain how you got this rejection? Gmail considers Forward Cat's DKIM to be correct:

Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of no-reply@forward.cat designates 107.170.17.71 as permitted sender) smtp.mailfrom=no-reply@forward.cat;
       dkim=pass header.i=@forward.cat
aleksandrs-ledovskis commented 8 years ago

@danisola

I can't explain why Gmail doesn't flag these messages as invalid, but it consistently raises errors with opendkim:

Authentication-Results: foo dkim=fail reason="signature verification failed" (1024-bit key) header.d=forward.cat header.i=@forward.cat header.b=AqZnPda3

Also, both mail-tester.com and dkimvalidator.com (results) tend to agree that message signature is invalid.

danisola commented 8 years ago

Thanks for the info, I'll investigate using these tools :+1: