The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to enable DomainKeys with latest exim builds?

Discussion in 'E-mail Discussions' started by norelidd, May 3, 2007.

  1. norelidd

    norelidd Well-Known Member

    Joined:
    Jan 15, 2007
    Messages:
    173
    Likes Received:
    1
    Trophy Points:
    18
    According to this: http://bugzilla.cpanel.net/show_bug.cgi?id=4099 , DomainKeys support in exim has been in EDGE builds since around 4/10/2007.

    The question is, how do we enable, configure, and use this on our servers? Many people are having the problem of mail to DomainKeys-enabled servers being sent directly to the spambox. Such is the case on Yahoo at least, and surely other mailhosts are being more aggressive soon.

    A test email from my EDGE 11.3 cpanel server to an account at yahoo mail displays as such at yahoo (after being fished out of the spambox)

    Code:
    <snip>
    [b]Authentication-Results: mta361.mail.re4.yahoo.com  from=citronix.net; domainkeys=neutral (no sig)[/b]
    <snip>
    
    we see there that there is no domainkeys signature by default. So how do we get this working?
     
  2. msti

    msti Member

    Joined:
    Aug 16, 2004
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    Did you find any solution to this?
     
  3. norelidd

    norelidd Well-Known Member

    Joined:
    Jan 15, 2007
    Messages:
    173
    Likes Received:
    1
    Trophy Points:
    18
    nope, no luck so far. I would love for someone from cpanel to illuminate the path for us
     
  4. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    I haven't played with it myself, but the Exim Wiki page for DomainKeys is here:
    http://www.exim.org/eximwiki/DomainKeys

    Note that page does say that the support for it is "Experimental". You'll have to look around the DomainKeys site to find out how to implement it for outgoing email, incoming is explained clearly enough it seems in the wiki.
     
  5. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    That wiki talks about adding libraries to the Makefile, etc...which shouldn't be necessary if support is built into cPanel. If this is a feature cPanel has incorporated into cPanel/WHM, I think they should document it somewhere :)
     
  6. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    There are still memory leaks in the domain keys code because of openssl bugs.

    We should be able to start using it once more people have ditched rh9.
     
  7. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    Well BLAST those RH9 peeps! :cool:

    This is good to know, though I'm not happy to hear about OpenSSL bugs (I had no idea). Just yesterday I was going through my list of installed software and noticed OpenSSL is kind of old, but I also made a note "do not update outside of cPanel", so I don't/didn't.

    Is there a plan to move away from OpenSSL to something else, or upgrade it, or?
     
  8. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    The memory leaks are only in the older versions. (ie rh9 land)
     
  9. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    So 0.9.7a is cool?
     
  10. jdlightsey

    jdlightsey Perl Developer III
    Staff Member

    Joined:
    Mar 6, 2007
    Messages:
    126
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Houston Texas
    cPanel Access Level:
    Root Administrator
    The two OpenSSL memory cleanup functions that were a problem are EVP_MD_CTX_cleanup() and CRYPTO_cleanup_all_ex_data() introduced in the first release of OpenSSL 0.9.7. The domainkeys library assumes they're available and uses them.

    On older distros with OpenSSL 0.9.6, domainkeys will leak a tiny amount of memory where those functions would have been called. If your distro shipped with any version of 0.9.7, it shouldn't be an issue.
     
  11. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    Awesome, thanks for the reply.
     
  12. norelidd

    norelidd Well-Known Member

    Joined:
    Jan 15, 2007
    Messages:
    173
    Likes Received:
    1
    Trophy Points:
    18
    Ok, so for those of use who are not affected by these bugs... how do we enable/setup domainkeys?
     
  13. JBenedetti

    JBenedetti Member

    Joined:
    Jul 20, 2006
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    I've been having serious problems with Yahoo greylisting my server and am another who is eager to enable DK. So, for those of us with OpenSSL/0.9.7a is the procedure simply that shown at http://www.exim.org/eximwiki/DomainKeys ? Or is there going to be something rolled into WHM 11 once the second stage of their update rolls out this month? I'm running a CURRENT release at the moment, which has phase 1 of the WHM 11 upgrade running.
     
  14. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    We have no plans to enable domain keys until after cPanel 11 has been rolled out.
     
  15. katmai

    katmai Well-Known Member

    Joined:
    Mar 13, 2006
    Messages:
    526
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Brno, Czech Republic
    cp11 has been rolled out. is there any update for this?
    thanks in advance.
     
  16. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    Barely. Give the guys some time...like 1-2 months. I would expect they have more pressing matters to deal with right now.
     
  17. sparek-3

    sparek-3 Well-Known Member

    Joined:
    Aug 10, 2002
    Messages:
    1,381
    Likes Received:
    23
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    I really thought cPanel's version of exim had DomainKeys support compiled in, but when I tried it, it didn't seem to work. Though, it should be noted that I am no where near a DomainKeys expert so I may not have done something right. I also didn't really put a lot of investigation into why it didn't work.

    All that being said, there is this post:

    http://forums.cpanel.net/showthread.php?t=67546

    Where nick states that DomainKeys support likely won't be out this year.
     
  18. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    cPanel have now put experimental beta support into the EDGE builds for domainkeys. I would imagine it will be a while before it's officially incorporated.
     
Loading...

Share This Page