Weak DKIM Keys

timvie · Jan 27, 2013

I upgraded from 11.32 to 11.34 now I am getting a dkim=policy (weak key) from gmail. I have seen to disable the DKIM and then delete the public and private DKIM keys and the re-enable DKIM and it will generate the new larger DKIM key.

Do I delete the keys via ssh?

Can someone give me the code to do this please?

Thanks in advance,

Tim

Greenhost · Jan 28, 2013

Hi Tim,
Yes, you should, for deleting DKIM on SSH:

Code:

 /opt/zimbra/libexec/zmdkimkeyutil -r -d example.com

For rebuild :

Code:

/opt/zimbra/libexec/zmdkimkeyutil -a -d example.com

Note: This is fore zimbra, what's your email and calendar groupware software?:p

mykkal · Mar 11, 2013

Wish there was some kind of notification when doing this... I wouldn't have known except I happen to make changes to my SPF records and noticed a hard fail.

mykkal · Mar 11, 2013

I was able to fix the weak keys issue by disabling DKIM, deleting the keys manually, and enabling dkim. make sure you restart exim afterwards.

cpanel will create 1024 bit keys if you do this.

Thread starter	Similar threads	Forum	Replies	Date
	Is there a tweak setting to automtically set Automatically Detect Configuration (recommended)??	Email	4	Feb 1, 2023
D	Tweak settings - email account suspension - where information is stored?	Email	3	Nov 18, 2022
V	Exim Allow Weak ciphers setting	Email	5	Mar 29, 2019
	Question about SMTP Tweak	Email	1	Dec 21, 2018
	Tweak Settings overrides max emails per hour	Email	3	Oct 12, 2016

Search

Search

Weak DKIM Keys

timvie

Member

Greenhost

Well-Known Member

mykkal

Well-Known Member

mykkal

Well-Known Member