[postfix] Filter messages with OpenDKIM.

diff --git a/dovecot/README b/dovecot/README
index de9de734766a6845f97bfbfb28d7a3fd323282eb..8466c001a8a72de8407c5a99f76e3ae67eda08d7 100644 (file)
--- a/dovecot/README
+++ b/dovecot/README
@@ -112,5 +112,8 @@ Add a user.
 ```
 psql --username=postgres --dbname=<database> \
   --command="INSERT INTO users \
-             VALUES ('user', 'domain.com', MD5('<password>'))"
+             VALUES ('user', 'domain.com', MD5('<password>'), \
+                    '<selector>')"
 ```
+
+See `opendkim/README` to create a `<selector>`.

diff --git a/opendkim/README b/opendkim/README
index 449e7a1b4801d99373bfd79047f65a5f60c91c97..e11160854e049b8f6ab7e7dec79b29b5d3aae6ab 100644 (file)
--- a/opendkim/README
+++ b/opendkim/README
@@ -14,6 +14,28 @@ opendkim
 |-> opendkim      -- /etc/default :: service configuration
 `-> opendkim.conf -- /etc/        :: configuration parameters
 
+Notes
+-----
+
+Generate keys for DKIM.
+
+```
+$ mkdir -p /etc/opendkim/keys/<domain>
+$ opendkim-genkey --directory=/etc/opendkim/keys/<domain> --selector=<selector> \
+    --domain=<domain>
+$ chown opendkim:opendkim /etc/opendkim/keys/<domain>/<selector>.private
+```
+
+Add a record in the database.
+
+```
+psql -U postgres -d mail_db \
+  -c "INSERT INTO dkim_keys \
+      VALUES ('<selector>', '/etc/opendkim/keys/<domain>/<selector>.private')"
+```
+
+Add `/etc/opendkim/keys/<domain>/<selector>.txt` as a DNS record.
+
 Install
 -------
 

diff --git a/postfix/main.cf b/postfix/main.cf
index dbdc517a25d637dc8dba62790460eadc9cab7a81..c2184c5d56cc3e39d752edc9f89a121d993822c7 100644 (file)
--- a/postfix/main.cf
+++ b/postfix/main.cf
@@ -27,3 +27,8 @@ smtpd_tls_security_level = encrypt
 
 # Message rewrite
 always_add_missing_headers = yes
+# OpenDKIM
+milter_protocol = 2
+milter_default_action = accept
+smtpd_milters = inet:localhost:8891
+non_smtpd_milters = inet:localhost:8891