bug report: opendkim/SigningTablen contained wildcard #3810
Labels
area/scripts
area/security
kind/bug/report
A report about a bug
service/security/dkim-dmarc-spf
stale-bot/ignore
Indicates that this issue / PR shall not be closed by our stale-checking CI
馃摑 Preliminary Checks
馃憖 What Happened?
Unsure how this happened, but my
config/opendkim/SigningTable
file contained*@* mail._domainkey.mydomain.net
as the first line, which caused OpenDKIM to sign all mails with that key and ignoring others keys for other domains. This is not an issue with most email providers, but some (e.g. GMX) are more strict and only accept mails if the DKIM domain used to sign the mail actually matches the domain in the FROM header.馃憻 Reproduction Steps
I may have called
setup config dkim domain *
at some point, but I am not sure. It would be nice to catch this user error and never create a SigningTable entry with a wildcard domain.馃悑 DMS Version
latest
馃捇 Operating System and Architecture
Debian 12
鈿欙笍 Container configuration files
No response
馃摐 Relevant log output
No response
Improvements to this form?
No response
The text was updated successfully, but these errors were encountered: