DKIM-Signature header field and DNS records

From: James R. Marcus <>
Date: Thu, 4 Feb 2010 17:47:29 -0500

I'm really new to DKIM and even newer to openDKIM.

We are a student discount company. Our discounts are automatic, so most users opt-in to emails notifying them of cash back in their accounts. So we send a lot of email. We also use a third part for email campaigns.
This third-party is using DKIM to keep our email from being flagged as SPAM.

They request that we create the following record:

[root_at_relay1 opendkim-1.2.2]# dig @ txt

; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> _at_4.2.2.2 txt
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61683
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0


;; ANSWER SECTION: 43200 IN TXT "k=rsa\; p=MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKE0P0tQI0mc6FF5tAnw4+TOC/P70CW2vV4rsBgz0IcrHttCa//qcUtmXacR/glEjWvpGTh9+UjR67psVRsmKqUCAwEAAQ=="

I noticied that "key1" is in the DKIM-Signature email headers:
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=key1;;
Does this mean I can setup another DNS record and a separate public/private key to send email from servers that I administer?

Received on Thu Feb 04 2010 - 22:47:44 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:19:46 PST