dkim key questions

From: Mauricio Tavares <>
Date: Wed, 22 Feb 2012 13:23:09 -0500

      I have a mail server which for historical reasons has a both a
hostname and cert of while it is normally
referred to as So, we have the A records pointing to and a cname to

As I was setting up the mail server, I create the key to match the cert domain:

opendkim-genkey -d -s mail -D /etc/mail
ln -s /etc/mail/mail.private /etc/mail/dkim.key

Which might cause the following headers in my outgoing emails:

Authentication-Results: (amavisd-new);
        dkim=softfail (invalid, public key: DNS query timeout for

Would creating a dkim key for make it happier? If so, can I
have *two* dkim keys so I can take care of both possibilities? If so,
how would that work in my dns records?
Received on Wed Feb 22 2012 - 18:23:28 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:37 PST