[Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.
"Fazzina, Angelo" <angelo.fazzina@uconn.edu> Mon, 17 December 2018 16:36 UTC
Return-Path: <angelo.fazzina@uconn.edu>
X-Original-To: ietf-dkim@ietfa.amsl.com
Delivered-To: ietf-dkim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 64DDA130EB8 for <ietf-dkim@ietfa.amsl.com>; Mon, 17 Dec 2018 08:36:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.359
X-Spam-Level:
X-Spam-Status: No, score=-3.359 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-1.459, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=uconn.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CpKgVwqkaW65 for <ietf-dkim@ietfa.amsl.com>; Mon, 17 Dec 2018 08:36:36 -0800 (PST)
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (mail-eopbgr750104.outbound.protection.outlook.com [40.107.75.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 02CB2128CB7 for <ietf-dkim@ietf.org>; Mon, 17 Dec 2018 08:36:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uconn.onmicrosoft.com; s=selector1-uconn-edu; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Mzla8NgI9k1rMq8FXNgzT9lsjslpBYxGBm3VNnwdVKA=; b=OaVYL66yuy8gGYRwnj4ac1Sw8/TC0G0GOR+pvgqu+X0vtLf4XJ6Seq7r9N7IB0w+4qu0adPW2mxArZyZGPdsmt+Mik39myU3Fx6+C4wKuR4Hp/SmKUUm1ll3eP1Z7VgVdW2ksLZQhEIeW9qSlnnYEnyzmfJFs5eLYVbu1jhXgxQ=
Received: from BN7PR05MB5859.namprd05.prod.outlook.com (20.176.30.82) by BN7PR05MB5874.namprd05.prod.outlook.com (20.176.30.141) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1446.15; Mon, 17 Dec 2018 16:36:33 +0000
Received: from BN7PR05MB5859.namprd05.prod.outlook.com ([fe80::b89c:5385:20fc:42a2]) by BN7PR05MB5859.namprd05.prod.outlook.com ([fe80::b89c:5385:20fc:42a2%3]) with mapi id 15.20.1446.015; Mon, 17 Dec 2018 16:36:33 +0000
From: "Fazzina, Angelo" <angelo.fazzina@uconn.edu>
To: "ietf-dkim@ietf.org" <ietf-dkim@ietf.org>
Thread-Topic: Looking for a little help testing DKIM failure reports, thank you.
Thread-Index: AdSWJqsHMz8c5LY2TQK6DGRvEIDsOQ==
Date: Mon, 17 Dec 2018 16:36:33 +0000
Message-ID: <BN7PR05MB5859247C857BBA67D10324D598BC0@BN7PR05MB5859.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [137.99.80.129]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN7PR05MB5874; 6:A14P5kcbFBoPv2HEajyViC3s3WERhg2C5XxFyQlyrMuQtiJwowVU5DxC/TrLQxdyRrHw50UqMKekOFU/AFvNYnAAPYejuny0WlxPyPqagwwLGV/Iy76QoJgzH3LybAQf2Jp7J0K5niuqkbCuXDBQlxl96FSuQ3+MdKrWJ/K4v5i1lZbBAw/JYMyvCYDtJJu2A5/NwdHbZtQbByzEIKKmR4kXM2NjYwhg6a89vsWv3DGiKXbndwuLWMqO3AU4p1peI6SBXCqSLtdJ6X6WFc2FznUz8yIPUJm0vgveEL/XrrjKcnzMicZ9U3clf9XWcFBM9xax4lBJCoYilL07kzUnR5ktFGIy5U211VIEUqFKUy8Z2ptAPv18+ZD5P63MBAw/NGeb2Wklyq40jaoc2dt/WAAlmzBE8P4yGYFurhmfI7sQ1JGxrDAG9DdPvKtiTEBpIThkRe6tBGHYmnfQ1eDkXQ==; 5:a1lkljww3Yyx4y9gOD0eRiPrsonMKmDtUMu3WzOxkJPunsV1TVa37KzMVRoepT7srSkiCookiSyxVN1v0gx/nZobtJAQNrMusC+0m/9GwvtQfeopCHk4WcXx0CZ/1hoCc8Ey4fll5lQIeYbg2IlZ6DXrDWaThexhYQM5tfaQCu4=; 7:XM+U7BeEtq8xvSc1eTz6hoi0o8BDI7aRtSvqeuWS7R3Tbm9bnfY5Zk23kxbYCech34C5HwDyKfNSDXfsJYogl9dyS4EVYS8bsHR1jYfSS2W3DalNmrWImOVr9C6Pq23J4OiqBy7PrK68LwRjDG3hNg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: d74e1e6a-6621-400e-4add-08d6643dce33
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600074)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:BN7PR05MB5874;
x-ms-traffictypediagnostic: BN7PR05MB5874:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=angelo.fazzina@uconn.edu;
x-microsoft-antispam-prvs: <BN7PR05MB5874E3E4CCC7C353019CE19398BC0@BN7PR05MB5874.namprd05.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230021)(999002)(5005020)(6040522)(2401047)(8121501046)(93006095)(93001095)(3231475)(944501520)(52105112)(3002001)(10201501046)(148016)(149066)(150057)(6041310)(20161123558120)(20161123560045)(20161123562045)(20161123564045)(201703131423095)(201702281528075)(201702281529075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BN7PR05MB5874; BCL:0; PCL:0; RULEID:; SRVR:BN7PR05MB5874;
x-forefront-prvs: 08897B549D
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(366004)(136003)(39860400002)(346002)(376002)(189003)(199004)(68736007)(5640700003)(6436002)(575784001)(54896002)(6306002)(55016002)(74316002)(9686003)(97736004)(236005)(5660300001)(26005)(2501003)(6916009)(186003)(53936002)(256004)(14454004)(106356001)(86362001)(14444005)(2351001)(7736002)(75432002)(33656002)(8936002)(6506007)(7696005)(66066001)(105586002)(81156014)(81166006)(102836004)(8676002)(316002)(786003)(25786009)(6116002)(2906002)(790700001)(3846002)(486006)(88552002)(478600001)(99286004)(71200400001)(71190400001)(476003)(66574012); DIR:OUT; SFP:1102; SCL:1; SRVR:BN7PR05MB5874; H:BN7PR05MB5859.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: uconn.edu does not designate permitted sender hosts)
x-microsoft-antispam-message-info: sgIZ0hDwR8PgoiH2/iSjmz0xSBykDSXCczSmTiHPAxB2eiC/KZdQ+djRc6fEoE/ck5FIQcoREIrXGL3SOZPtXpzqIAiwBH1sExxVuxVcyLm6GkeAtj1WFNHIeCelXG34Yl8dc038hMzqlQ/yOPqme2Lm92Jn+q38pjrusuRLjTZgVctTJX+1U8xUg0iKe9RHZj3JL5rf3cUfy6wBv02fDOKgyP/Dfqrhapd0zQ36kksEAhmfT6PvBlb08pA9vHaoxGdOrd7AbM8P3tK6Poc5V5m+C1K3tYKKxa0xYZ7AQD4wYUayTYo3htBYZpSsUJYZ
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BN7PR05MB5859247C857BBA67D10324D598BC0BN7PR05MB5859namp_"
MIME-Version: 1.0
X-OriginatorOrg: uconn.edu
X-MS-Exchange-CrossTenant-Network-Message-Id: d74e1e6a-6621-400e-4add-08d6643dce33
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Dec 2018 16:36:33.2492 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 17f1a87e-2a25-4eaa-b9df-9d439034b080
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR05MB5874
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-dkim/23jf1TmIFkhMvyucSRsrNbd72BE>
Subject: [Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.
X-BeenThere: ietf-dkim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DKIM List <ietf-dkim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-dkim/>
List-Post: <mailto:ietf-dkim@ietf.org>
List-Help: <mailto:ietf-dkim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Dec 2018 16:36:39 -0000
Hi, I am trying to test my TXT records for the ability to report failures. Talking about RFC 6651 These are my records dkim1._domainkey.mta5.uits.uconn.edu text = "v=DKIM1\; k=rsa\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/YIuJIABa9M7Ox5AXs6CP6z26d/i9JDrHW58YU/OzfsEr6yADboIOydCaiiVaNuwtkbx catzd6/iutxWbAiY51rRAvVdBs2YIoGO6Glzeev66ft8IfMnHgxND438KIsdOjUmJZuglFJUWGzCYDSC1eq/zqDVncFwTxWkKW/qtxQIDAQAB" _report._domainkey.mta5.uits.uconn.edu text = "ra=dkim-errors\; rp=100\; rr=all" Here is a test email sig header v=1; a=rsa-sha256; c=relaxed/simple; d=mta5.uits.uconn.edu; s=dkim1; t=1544820643; r=y; bh=9ZoLOUiYT9ubu7ykLiU305ZLqHeoTNV83po4QgGRepU=; h=To:From:Subject:Date:From; b=uPOMfVq7Ilr0/e2GEwEIiRotuX1gacod2Tmk7c1lfcYUpNTUznjUXPyNidTlbhrLA ylDHc1xE1P/B1NBo0awxBN4Qbwjz8UWUC1vQpQsrenWnhr+Rp46g7KKqWWZ2Sjw0O0 0RV2EF9aD1UP5bd7qLtuQHQ9gye5cVCBv6uVdM7g= Here is a test email result header spf=none (sender IP is 137.99.25.249) smtp.mailfrom=appmail.uconn.edu; uconn.mail.onmicrosoft.com; dkim=fail (invalid public key) header.d=mta5.uits.uconn.edu;uconn.mail.onmicrosoft.com; dmarc=none action=none header.from=appmail.uconn.edu;compauth=pass reason=105 So I can simulate a failure, but cannot seem to get a report emailed to dkim-errors@mta5.uits.uconn.edu<mailto:dkim-errors@mta5.uits.uconn.edu> ? I made sure account exists on server: [root@mta5 home]# ls -l /home/|grep dkim drwx------. 2 dkim-errors dkim-errors 78 Dec 10 16:21 dkim-errors How often are the failure reports generated ? did not see that mentioned in the RFC's ? Does anyone see anything obvious that I am doing wrong ? Thank you. -ANGELO FAZZINA ITS Service Manager: Spam and Virus Prevention Mass Mailing G Suite/Gmail angelo@uconn.edu University of Connecticut, ITS, SSG, Server Systems 860-486-9075
- [Ietf-dkim] Looking for a little help testing DKI… Fazzina, Angelo
- Re: [Ietf-dkim] Looking for a little help testing… Murray S. Kucherawy
- Re: [Ietf-dkim] Looking for a little help testing… Fazzina, Angelo
- Re: [Ietf-dkim] Looking for a little help testing… Alessandro Vesely
- Re: [Ietf-dkim] Looking for a little help testing… Laura Atkins
- Re: [Ietf-dkim] Looking for a little help testing… Steve Atkins
- Re: [Ietf-dkim] Looking for a little help testing… Fazzina, Angelo