IETF Logo Mail Archive

Re: [Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.

"Fazzina, Angelo" <angelo.fazzina@uconn.edu> Mon, 17 December 2018 18:19 UTC

Return-Path: <angelo.fazzina@uconn.edu>
X-Original-To: ietf-dkim@ietfa.amsl.com
Delivered-To: ietf-dkim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67F72130EFC for <ietf-dkim@ietfa.amsl.com>; Mon, 17 Dec 2018 10:19:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.728
X-Spam-Level:
X-Spam-Status: No, score=-1.728 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-1.459, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_MIME_MALF=0.01, URI_HEX=1.122, URI_NOVOWEL=0.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=uconn.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8gR_SXu5vRZY for <ietf-dkim@ietfa.amsl.com>; Mon, 17 Dec 2018 10:19:01 -0800 (PST)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-eopbgr740108.outbound.protection.outlook.com [40.107.74.108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4DB18130F1B for <ietf-dkim@ietf.org>; Mon, 17 Dec 2018 10:19:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=uconn.onmicrosoft.com; s=selector1-uconn-edu; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+Z3h1LhnFrRH6OGQI4Ru6dUtsueETPQilOCNJtps+ro=; b=iKuK/LnTosA3ahWmE4Ach3hS1VBngyw+ItV0j9mxLtSo/qEyhHmCLPZyUteJ+3gkwKTt9AMmftzYxU1UrAzXwjZHoU5n4Cu7ISvochRZtK0VzZzhFhTo8FJqRMUudh9ffuUhygMtXBjuSnyM/rw1mNNOLNpIybokq9ZYLQVTey0=
Received: from BN7PR05MB5859.namprd05.prod.outlook.com (20.176.30.82) by BN7PR05MB4563.namprd05.prod.outlook.com (52.135.248.160) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1446.9; Mon, 17 Dec 2018 18:18:59 +0000
Received: from BN7PR05MB5859.namprd05.prod.outlook.com ([fe80::b89c:5385:20fc:42a2]) by BN7PR05MB5859.namprd05.prod.outlook.com ([fe80::b89c:5385:20fc:42a2%3]) with mapi id 15.20.1446.015; Mon, 17 Dec 2018 18:18:58 +0000
From: "Fazzina, Angelo" <angelo.fazzina@uconn.edu>
To: "Murray S. Kucherawy" <superuser@gmail.com>
CC: "ietf-dkim@ietf.org" <ietf-dkim@ietf.org>
Thread-Topic: [Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.
Thread-Index: AdSWJqsHMz8c5LY2TQK6DGRvEIDsOQAA6swAAAJrwrA=
Date: Mon, 17 Dec 2018 18:18:58 +0000
Message-ID: <BN7PR05MB5859440D9931B79BA6D042CA98BC0@BN7PR05MB5859.namprd05.prod.outlook.com>
References: <BN7PR05MB5859247C857BBA67D10324D598BC0@BN7PR05MB5859.namprd05.prod.outlook.com> <CAL0qLwZk8ig5-YHnMuuVfvk0T22_SO31baCCAC0bA1Jy7mmOgg@mail.gmail.com>
In-Reply-To: <CAL0qLwZk8ig5-YHnMuuVfvk0T22_SO31baCCAC0bA1Jy7mmOgg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=angelo.fazzina@uconn.edu;
x-originating-ip: [137.99.80.129]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN7PR05MB4563; 6:VBPaPnZDFnQaF4qk6nUn2G6UvpoWf1GpfF2cVZ34EutOPNMbGYEW+T6pdMyCgbw8J72vHsPByp0lVNkkd0Dxpq3mwcgh9m2h78r4oEjC6WhdLVrcL7AboHqHa5a0zQlr9snFhORoApCvFlmAZmhBm/qxY/pH58+26AnurgwJcVo69xqeAukrhHLFT7AVBsVHCsvR1k0C0qUec7yLUkfGgmJ4fKQx6B1LPEMfmBAGIMgPUY8D78Ms3vIJt5q6KzK/XvsU55fr32hTDbD6kMNtD2lE1tL7eyDUgpRLEutp8sFa/mWYV0AjHOhjosDcJOijcry/aEaApYlh4J6pVQbahfVs9ml4+bvZD4wbzB52n1pas2YiWs/fDsY3rO0/9pJZyjzUKRfJRsZzdJ/g/yGkZU0ZV5+JBNQXfRBKYGlZgd3bpTuABL5DImCJiGhvo9+osh7gfNcFMcvuaPj/840gAA==; 5:IwJSZ4rdd5SN50TgRunb/E5cWmF1M5ILpYjJjxQhDP7MBEQilcWm5R6oaPbY3q38JAaZjwnYSVXL1xlqaXB2f5M4sSSXNiHV9Aur9Ty5JOQnWXxSPuLHpHBUCy7MGZn+4P2Ghsm3kU3n+chjxpK8RjBETT34IbQdNlN04kCfn08=; 7:/72nCWxJLWTulgraeL9jy1ERzE8L8ShCpgf/dzg+EE5F+1JVzBjNirR1Fr2599k9UN1coVTkzIAlT6XIwFGCv2ItmgA/Jzf86is1NBrCle9B3E0+40Q4HGr3YCA5hQjZXiAeOnfCTH+J9W0htQtTBw==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 1a54f414-8d09-4047-bbc1-08d6644c1d33
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:BN7PR05MB4563;
x-ms-traffictypediagnostic: BN7PR05MB4563:
x-microsoft-antispam-prvs: <BN7PR05MB4563089CC8724B42BF5A778898BC0@BN7PR05MB4563.namprd05.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230021)(999002)(6040522)(2401047)(8121501046)(5005006)(10201501046)(3231475)(944501520)(52105112)(3002001)(93006095)(93001095)(148016)(149066)(150057)(6041310)(20161123560045)(20161123562045)(20161123558120)(201703131423095)(201702281529075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(201708071742011)(7699051)(76991095); SRVR:BN7PR05MB4563; BCL:0; PCL:0; RULEID:; SRVR:BN7PR05MB4563;
x-forefront-prvs: 08897B549D
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39860400002)(366004)(396003)(346002)(376002)(136003)(189003)(199004)(66574012)(2906002)(186003)(316002)(4326008)(53936002)(26005)(14454004)(88552002)(790700001)(6116002)(3846002)(236005)(9686003)(229853002)(6306002)(478600001)(74316002)(5660300001)(6916009)(39060400002)(66066001)(6246003)(256004)(14444005)(45080400002)(99286004)(97736004)(106356001)(486006)(105586002)(55016002)(7736002)(8936002)(54896002)(11346002)(966005)(446003)(476003)(6436002)(8676002)(33656002)(75432002)(606006)(81166006)(81156014)(25786009)(86362001)(575784001)(786003)(76176011)(102836004)(6506007)(68736007)(53546011)(7696005)(1411001)(71200400001)(71190400001); DIR:OUT; SFP:1102; SCL:1; SRVR:BN7PR05MB4563; H:BN7PR05MB5859.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: uconn.edu does not designate permitted sender hosts)
x-microsoft-antispam-message-info: BDHcd9VGUOYZ0z2M7Ud6L6ztdCgWioU8jnqIqKIknRHQuAr0Z9koiqydka4BHxL5D0N9gVv8yuu/HS7F6ZUX/OGa+L+aNAt8A2PZ2e+Jo/Q0KZCG2ZeKOyM7pOqaxDx4Tj6h+MGpnrgHkzpeRnhPANd8LdIoekbdD/J7NPLbKd6d9habnJPjTKIOLWBkOMlbG5wQ18YUwF5isCLUPYNX5Ne34/c/qGVXxzwgDTDE0yyBAJHEqLj384RR3Xf8CTSsHDcOLVwqZVHfEVIj7OrLI0SIB8CkspKJ7/mNVMr4lKdIOzV+TEyWzicoYS5q0qz9
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BN7PR05MB5859440D9931B79BA6D042CA98BC0BN7PR05MB5859namp_"
MIME-Version: 1.0
X-OriginatorOrg: uconn.edu
X-MS-Exchange-CrossTenant-Network-Message-Id: 1a54f414-8d09-4047-bbc1-08d6644c1d33
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Dec 2018 18:18:58.8554 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 17f1a87e-2a25-4eaa-b9df-9d439034b080
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR05MB4563
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-dkim/r-3DyMAakOiowvTaHriJ492tluw>
Subject: Re: [Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.
X-BeenThere: ietf-dkim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DKIM List <ietf-dkim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-dkim/>
List-Post: <mailto:ietf-dkim@ietf.org>
List-Help: <mailto:ietf-dkim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Dec 2018 18:19:07 -0000

Hi, thank you.
Here are the headers of the test email I sent.
I sent it with Thunderbird through mta5 which signed it, and relayed it to next hop, and it was delivered.

I think you are saying since I configured the server to both verify and sign emails, it won’t bother verifying an email the server itself signed, so I won’t ever get a report ? I think I read something like that in the RFC’s ?


Sounds like my testing method may be flawed.  ☹


Received: from BYASPR01MB1.namprd05.prod.outlook.com (2603:10b6:406:80::38) by
BN7PR05MB5859.namprd05.prod.outlook.com with HTTPS via
BN7PR06CA0025.NAMPRD06.PROD.OUTLOOK.COM; Fri, 14 Dec 2018 20:50:45 +0000
Received: from CO2PR05CA0064.namprd05.prod.outlook.com (2603:10b6:102:2::32)
by BYASPR01MB1.namprd05.prod.outlook.com (2603:10b6:a02:ce::33) with
Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1446.9; Fri, 14 Dec
2018 20:50:44 +0000
Received: from SN1NAM01FT045.eop-nam01.prod.protection.outlook.com
(2a01:111:f400:7e40::209) by CO2PR05CA0064.outlook.office365.com
(2603:10b6:102:2::32) with Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.1446.10 via Frontend
Transport; Fri, 14 Dec 2018 20:50:43 +0000
Authentication-Results: spf=none (sender IP is 137.99.25.249)
smtp.mailfrom=appmail.uconn.edu; uconn.mail.onmicrosoft.com; dkim=fail
(invalid public key) header.d=mta5.uits.uconn.edu;uconn.mail.onmicrosoft.com;
dmarc=none action=none header.from=appmail.uconn.edu;compauth=pass reason=105
Received-SPF: None (protection.outlook.com: appmail.uconn.edu does not
designate permitted sender hosts)
Received: from mta5.uits.uconn.edu (137.99.25.249) by
SN1NAM01FT045.mail.protection.outlook.com (10.152.65.226) with Microsoft SMTP
Server id 15.20.1446.11 via Frontend Transport; Fri, 14 Dec 2018 20:50:43
+0000
Received: from [137.99.80.129] (angelo.uits.uconn.edu [137.99.80.129])
                by mta5.uits.uconn.edu (Postfix) with ESMTP id 088EA3000A2C
                for <angelo.fazzina@uconn.edu>; Fri, 14 Dec 2018 15:50:43 -0500 (EST)
DKIM-Filter: OpenDKIM Filter v2.11.0 mta5.uits.uconn.edu 088EA3000A2C
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mta5.uits.uconn.edu;
                s=dkim1; t=1544820643; r=y;
                bh=9ZoLOUiYT9ubu7ykLiU305ZLqHeoTNV83po4QgGRepU=;
                h=To:From:Subject:Date:From;
                b=uPOMfVq7Ilr0/e2GEwEIiRotuX1gacod2Tmk7c1lfcYUpNTUznjUXPyNidTlbhrLA
                ylDHc1xE1P/B1NBo0awxBN4Qbwjz8UWUC1vQpQsrenWnhr+Rp46g7KKqWWZ2Sjw0O0
                0RV2EF9aD1UP5bd7qLtuQHQ9gye5cVCBv6uVdM7g=
To: angelo.fazzina@uconn.edu
From: "Fazzina, Angelo" <alf02013@appmail.uconn.edu>
Subject: broken test number 2
Message-ID: <68467787-7ba6-71dd-3548-0269e900d274@appmail.uconn.edu>
Date: Fri, 14 Dec 2018 15:50:42 -0500
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101
Thunderbird/60.3.3
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format=flowed
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Return-Path: alf02013@appmail.uconn.edu

-ANGELO FAZZINA

ITS Service Manager:
Spam and Virus Prevention
Mass Mailing
G Suite/Gmail

angelo@uconn.edu
University of Connecticut,  ITS, SSG, Server Systems
860-486-9075

From: Murray S. Kucherawy <superuser@gmail.com>
Sent: Monday, December 17, 2018 12:03 PM
To: Fazzina, Angelo <angelo.fazzina@uconn.edu>
Cc: ietf-dkim@ietf.org
Subject: Re: [Ietf-dkim] Looking for a little help testing DKIM failure reports, thank you.

DKIM verifiers are not required to generate reports.  It's completely optional.  Does the place you're sending to advertise somehow that they will be generated?

On Mon, Dec 17, 2018 at 8:36 AM Fazzina, Angelo <angelo.fazzina@uconn.edu<mailto:angelo.fazzina@uconn.edu>> wrote:
Hi, I am trying to test my TXT records for the ability to report failures. Talking about RFC 6651

These are my records

dkim1._domainkey.mta5.uits.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fdomainkey.mta5.uits.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916294577&sdata=vM9oIARyakkvr%2B0MEePmLHTRA4O2thX57KWW4mgR9cI%3D&reserved=0>    text = "v=DKIM1\; k=rsa\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/YIuJIABa9M7Ox5AXs6CP6z26d/i9JDrHW58YU/OzfsEr6yADboIOydCaiiVaNuwtkbx
catzd6/iutxWbAiY51rRAvVdBs2YIoGO6Glzeev66ft8IfMnHgxND438KIsdOjUmJZuglFJUWGzCYDSC1eq/zqDVncFwTxWkKW/qtxQIDAQAB"

_report._domainkey.mta5.uits.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fdomainkey.mta5.uits.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916304590&sdata=MGqgIykiwGftuN%2BEBOF2PGI73WCTf5zqzWaX4ywI7T4%3D&reserved=0>  text = "ra=dkim-errors\; rp=100\; rr=all"


Here is a test email sig header
v=1; a=rsa-sha256; c=relaxed/simple; d=mta5.uits.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fmta5.uits.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916304590&sdata=Tnts9TCcl5Ew4iUUBm%2BgarAzWkfEoFiKADMaIh4UI%2Fc%3D&reserved=0>; s=dkim1; t=1544820643; r=y; bh=9ZoLOUiYT9ubu7ykLiU305ZLqHeoTNV83po4QgGRepU=; h=To:From:Subject:Date:From; b=uPOMfVq7Ilr0/e2GEwEIiRotuX1gacod2Tmk7c1lfcYUpNTUznjUXPyNidTlbhrLA ylDHc1xE1P/B1NBo0awxBN4Qbwjz8UWUC1vQpQsrenWnhr+Rp46g7KKqWWZ2Sjw0O0 0RV2EF9aD1UP5bd7qLtuQHQ9gye5cVCBv6uVdM7g=

Here is a test email result header
spf=none (sender IP is 137.99.25.249) smtp.mailfrom=appmail.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fappmail.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916314590&sdata=fETLZXDMtAavWtbHlB6CWVCDniKTTLV3nLM8KFgHEVw%3D&reserved=0>; uconn.mail.onmicrosoft.com<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fuconn.mail.onmicrosoft.com&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916314590&sdata=1LzykOrAlxDAmmIkkmYGWS0SaVqdAZ3kZT0VJlhcQQA%3D&reserved=0>; dkim=fail (invalid public key) header.d=mta5.uits.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fmta5.uits.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916324595&sdata=3r180lJRsbT%2F4rvsbeDbOMfhYbsE3%2BJgwIbkYvu5o3Y%3D&reserved=0>;uconn.mail.onmicrosoft.com<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fuconn.mail.onmicrosoft.com&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916324595&sdata=mlL9WGOqI2meDT0NW9nIYUFSD1HKYgswQW286lF5XkY%3D&reserved=0>; dmarc=none action=none header.from=appmail.uconn.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fappmail.uconn.edu&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916334604&sdata=CPfOWrDlnuTeyjcfrYfk6xhMmXVzwFIwtdL14Ou9m2Y%3D&reserved=0>;compauth=pass reason=105


So I can simulate a failure, but cannot seem to get a report emailed to dkim-errors@mta5.uits.uconn.edu<mailto:dkim-errors@mta5.uits.uconn.edu> ?

I made sure account exists on server:
[root@mta5 home]# ls -l /home/|grep dkim
drwx------. 2 dkim-errors       dkim-errors         78 Dec 10 16:21 dkim-errors



How often are the failure reports generated ? did not see that mentioned in the RFC’s ?

Does anyone see anything obvious that I am doing wrong ?
Thank you.


-ANGELO FAZZINA

ITS Service Manager:
Spam and Virus Prevention
Mass Mailing
G Suite/Gmail

angelo@uconn.edu<mailto:angelo@uconn.edu>
University of Connecticut,  ITS, SSG, Server Systems
860-486-9075

_______________________________________________
Ietf-dkim mailing list
Ietf-dkim@ietf.org<mailto:Ietf-dkim@ietf.org>
https://www.ietf.org/mailman/listinfo/ietf-dkim<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fietf-dkim&data=02%7C01%7Cangelo.fazzina%40uconn.edu%7Cd11a679d2df74fbeb63908d664418541%7C17f1a87e2a254eaab9df9d439034b080%7C0%7C0%7C636806629916334604&sdata=oYg%2BrdpATbemNnI6afrabJYGmtuvJJZ6gSAbr%2Bd2Yeo%3D&reserved=0>

v2.23.0 | Report a Bug | By Email