Domainkeys to DKIM - possible? how to?

I currently have spf and domain keys enabled for all my site accounts and would like to 'upgrade' to DKIM. From what I have found this is not supported directly by cpanel/whm.

I have found information about something called dkimproxy and have also noticed I have a Mail::DKIM module installed on my server. So, what is the easiest route to go without having issues and without any automated upgrades wiping away my changes?

Do I install DKIM alongside of domainkeys or do I replace it with? It seems as though if I have DKIM installed then domain keys will pass/not be needed sort of like how spf will also pass for sender id.

If anyone could point me to some good info I would appreciate it. I have searched and searched, but have yet to find the best and/or clear way of how to go about it.

For the record I have about 50 some sites between a few ips all of which use my main server ip though for spf validation...

 

thanks for the reply...

I actually have that page bookmarked from when I was searching the net about this. The problem lies in ...

1 - It doesn't show how to do this for multiple sites? In other words, can I just use a comma list for dkim_domain=your_domain_name.com for all my domains? One person listed using dkim_domain=$sender_address_domain instead for multiple...?

2 - mail._domainkey.rosesource.com.? I'm guessing .rosesource.com isn't needed when adding to the dns?

3 - Can I keep my domain keys setup or do I need to remove domain keys for all the domains?

4 - Does it get removed when there are automatic updates?

 

Well, after removing domain keys from the sites I followed the instructions given in the earlier post. Everything went smooth, restarted exim and named, then sent out a test email. No signature. I sent to test emails as well as my own gmail account - nothing - gmail puts it right into the spam folder.

I first used dkim_domain=$sender_address_domain in exim as I have multiple domains... I then changed this to a specific site and neither did the trick.

Is there something I'm missing here or does anyone have any suggestions? Really need to get this up and working!

 

well now it is sending the signature... perhaps dns needed a few moments... but now when sending a test email I get :

result = fail
Details: body has been altered

Anyone?

 

hey Tristan, thanks for the response and help...

I followed the instructions at How to enable DKIM in cPanel server. | techinterplay and was using the test they mention at Brandon Checketts which is giving the body has been altered response...

 

For whatever reason it appears to be working now... just tried sending to my gmail account in both plain text and html and it works... and tried the again test on that website and it works too...

weird... whatever was happening it works now and I'm happy with that! Hope others can find the install listed below helpful!

 

Well, I added the dns stuff to the rest of my sites... I have been testing them by sending email to a gmail account of mine. For whatever reason only one account goes into my gmail inbox... the rest of my sites go directly to gmails spam folder.

I viewed the original source of one of the emails and it appears to pass fine and looks exactly like the one which works correctly... I can't figure this one out... here is a snippet from an email that goes to gmails spam folder :

Received-SPF: pass (google.com: domain of support@mysite.com designates xx.xxx.xxx.xxx as permitted sender) client-ip=xx.xxx.xxx.xxx;
Authentication-Results: mx.google.com; spf=pass (google.com: domain of support@mysite.com designates xx.xxx.xxx.xxx as permitted sender) smtp.mail=support@mysite.com; dkim=pass header.i=@mysite.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=mysite.com; s=mail; h=Message-ID:Date:From:MIME-Version:
To:Subject:Content-Type:Content-Transfer-Encoding; bh=(the key goes here)

Everything looks exactly the same as the one which goes to the inbox minus the fact the domain is different... why the heck is this going to the spam folder in gmail!?