opendkim verify, but signed email has a hardfail.

From: Josef Karliak <>
Date: Tue, 08 Nov 2011 13:30:08 +0100

   I've some problems with opendkim with postfix on the opensuse 11.4 64-bit.
   Email is signed, but verifiers don't accept it. Part of the email's header:
Authentication-Results:; dkim=hardfail
        (verification failed); dkim-adsp=fail

   In the syslog I see:
   Nov 8 13:22:00 celer dkim-filter[4888]: ED4D1C58FF SSL
error:04077068:rsa routines:RSA_verify:bad signature
Nov 8 13:22:00 celer dkim-filter[4888]: ED4D1C58FF: bad signature data

   dig in txt is answered from dns server of
the domain, selector for dkim is "mail"

   But if I dig my dkim for, it seems to be longer of "=="
at the end of the record than The record for is
copy&paste from mail.txt selector file...

   Thank for your tips and kicking me to the right way...

Ma domena pouziva zabezpeceni a kontrolu SPF ( a  
DomainKeys/DKIM (with ADSP) . Pokud mate problemy s dorucenim emailu,  
zacnete pouzivat metody overeni puvody emailu zminene vyse. Dekuji.
My domain use SPF ( and DomainKeys/DKIM (with ADSP)  
policy and check. If you've problem with sending emails to me, start  
using email origin methods mentioned above. Thank you.
This message was sent using IMP, the Internet Messaging Program.

Received on Tue Nov 08 2011 - 12:30:18 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:21 PST