On Wed, Mar 18, 2009 at 6:15 AM, Jeff Macdonald
<jmacdonald(_at_)e-dialog(_dot_)com> wrote:
Do MTAs with DKIM support include key management, or do people use
separate packages like dkim-connector? And how do you get the public
keys into the DNS?
Currently for us, it is 100% manual for just a few domains. I've not
looked into dkim-connector, so I have no opinion on it yet.
Our open source package includes a script whose output is a private key
file in PEM format (which is the format our DKIM filter wants) as well as
the public key formatted into a TXT record for easy inclusion into zone
files.
I've always thought that was a really nice touch.
We don't have any management tools for inserting that data into the DNS or
managing such for users at this point but it's something we've considered.
There are so many different possible site DNS configurations that
making such a tool seems incredibly difficult. But I won't discourage
you in the least.
we are not doing DKIM yet, but the issues are the same for DK. Public
keys are entered via whatever means the client has available to them.
I'm working on this right now for all customer domains that we host.
We generate the keys on our end using some very straightforward perl.
Being a 3rd party, I'd doubt our clients would allow automatic updates.
Since we host DNS for a majority of our customers, it's relatively
straight-forward for us to build the DNS records from the public key
and insert them into the database.
--
Regards... Todd
All truth passes through three stages. First, it is ridiculed. Second,
it is violently opposed. Third, it is accepted as being self-evident.
_______________________________________________
dkim-ops mailing list
dkim-ops(_at_)mipassoc(_dot_)org
http://mipassoc.org/mailman/listinfo/dkim-ops