key file permissions and other questions

From: Max Flodén <>
Date: Tue, 28 Feb 2012 13:05:46 +0100


I have a few newbie (as in new to opendkim, postfix and debian) questions.
I have installed opendkim pretty much using this guide but added KeyTable and SigningTable etc.

1. It took me a long time to finally get opendkim to work until I found that the problem was that opendkim could not read the key file default.private. It was chmod 600 but when I changed to chmod 644 it started working. However I am a bit concered about security doing this as this means the private key is readable for all with system access, right?
(I wrote about this a little more in detail here: )

2. I read somewhere (on this list I think, could not find it now) that domain name is not case sensitive when matching against the SigningTable but in my case this does not seem true. Is there a way I can get my SigningTable to match domain in a case insensitive manner?
Eg. If I put "" in SigningTable then email from "" will result in "no signing table match", but if I change it to "" in SigningTable it will work.

3. I see that the latest version of opendkim is 2.4.3 and 2.5 soon to be released. However the version I get when doing "apt-get install opendkim" in Debian is version 2.0.1.
How does this process work, how do I get the latest version on Debian?

Received on Tue Feb 28 2012 - 12:05:57 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:37 PST