On Sat, 2009-08-22 at 15:39 -0500, Gregory P. Ennis wrote:

On Sat, 2009-08-22 at 15:58 -0400, Dave wrote:

...

Hello, I'm trying to implement domainkeys and dkim on my domain and then to get it set up with postfix. Currently i'm having difficulty with the first stage, adding the domainkey txt record to bind, is a special version of bind required to do this? The machine that handles dns is using bind 9.5.1-p3. Thanks. Dave.

Dave,

You need to make an entry in the appropriate zone file of your domain.

Unless you have modified the standard setup your zone file should be here: /var/named/chroot/var/named/domain.zone

Your zone file has to be referenced in : /var/named/chroot/etc/named.conf

Put this a line like this one at the bottom of your zone file :

domain.com. IN TXT "v=spf1 ip4:###.###.###.### a mx include:alternatedomane.net ~all"

Greg

Dave,

The added line should be all on one line. There should be no line feed between "MX" and "include".

Greg

Hi, Do i have to have a patched version of bind or compile it with an option to turn on dkim? When adding the txt record a named-checkzone does not reveal any problems but nslookup on the domain querying directly to the server does not show any txt records. This is the same for dkim as well as domainkeys. Thanks. Dave.

-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Kai Schaetzl Sent: Sunday, August 23, 2009 12:31 PM To: centos@centos.org Subject: Re: [CentOS] domainkeys, dkim, bind

Gregory P. Ennis wrote on Sat, 22 Aug 2009 15:39:21 -0500:

domain.com. IN TXT "v=spf1 ip4:###.###.###.### a mx include:alternatedomane.net ~all"

He asked about DKIM.

Kai

-- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com

_______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos

Dave wrote on Sun, 23 Aug 2009 13:21:23 -0400:

Do i have to have a patched version of bind or compile it with an option to turn on dkim?

I'm not very familiar with domain keys. But for TXT records you don't need anything special. If domain keys uses only TXT records then the same applies.

Kai ----------------------------------

Dave,

My perception is the same as Kai's. I have not used dkim yet, but have it on my to do list. The text record of your domain stored in your zone file in bind is referenced when any query accesses the information about your domain. ie the command :

host -t TXT domain.com

will display the text record in bind if you have one.

Kai pointed out in his earlier note I did not give you the syntax for DKIM.... sorry I did do that. The example of a text record I gave you gives you the information as to how to specify that all of your e-mail comes from a certain ip address. I have not made one for DKIM yet.

Remember that you have to set up the text record not only in your internal name server, but also the name servers of whoever holds your internet name resolution.

Let us know how DKIM works for you.

Greg