[Newbie question] DKIM key invalid, DNS well configured

From: Eschnigma <eschnigma_at_openmailbox.org>
Date: Sat, 25 Apr 2015 13:28:25 +0300

Hello everyone

This is my first time setting up a Postfix server system.
On a technical level, everything works out fine - Postfix is configured well and
e-mails reach their destinations.

However, they can't make it past spam filters, partly because DKIM isn't

I've tried twice following the instructions on this page:
... but Gmail still refuses, and OpenMailbox still marks as spam.

A reported generated by sending to test_at_allaboutspam.com tells me the

"Email contains invalid DKIM/Domain Keys Signature. Published Domain Keys
policy does not specify whether to accept/reject such emails. Signing your
Outbound emails and clearly specifying a policy to accept signed emails will
minimize chances of your Email being considered as SPAM. "

The system is Fedora 20, linked to domain makeandshiftjewellery.com at, and the public key is the following:

[userhidden_sorryiamparanoid_at_makeandshiftjewellery ~]$ sudo cat
[sudo] password for userhidden_sorryiamparanoid:
default._domainkey IN TXT ( "v=DKIM1; k=rsa; "
) ; ----- DKIM key default for makeandshiftjewellery.com

The company where I purchased the domain confirms it's active:

v=DKIM1; k=rsa; "

What am I missing? What is this policy that allaboutspam.com is referring to?

I don't know if this is normal, but I have two keys that are the same:

[root_at_makeandshiftjewellery ~]# diff /etc/opendkim/keys/default.txt
) ; ----- DKIM key default for com
)  ; ----- DKIM key default for makeandshiftjewellery.com
Thank you!
Received on Sat Apr 25 2015 - 10:28:36 PST

This archive was generated by hypermail 2.3.0 : Sat Apr 25 2015 - 15:00:01 PST