Draft: Replace opendkim with rspamd for DKIM signing. (!246) · Merge requests · simple-nixos-mailserver / nixos-mailserver

Kanashimia requested to merge kanashimia/nixos-mailserver:master into master Oct 09, 2021

Closes: #210

This works while being backwards compatible, keys are kept at the same location. Rspamd also supports holding keys in redis, would be nice switch to that (because less locations to backup), but it seems much more complicated to do right.

This also sets check_pubkey = true which will check if public key in DNS matches private key, and prints a warning to the journal otherwise. It does a single DNS request each time, should not be a big issue, i think?

Edited Oct 09, 2021 by Kanashimia

Admin message

Draft: Replace opendkim with rspamd for DKIM signing.

Merge request reports