Mailtraq - the Complete Email Server
   

Enstar for Mailtraq email server sales & support
Making world-class Internet technology affordable  

Search for:

Advanced search

info.mailtraq.com > Anti-Spam > DomainKeys

DomainKeys

This control is found in the Console:
Options| Outgoing Mail

DomainKeys (DKIM) aim is to stop the practice of changing an e-mail message's header information so it appears to have been sent by someone else.

 

DomainKeys is designed to let receiving e-mail systems confirm that a message in fact originated from a user authorised to send e-mail for the domain stated in the header. DomainKeys uses public cryptography technology to accomplish this validation. The outgoing message is digitally "signed" with a private key while the receiving e-mail system uses a public key to validate the signature.

 

Mailtraq provides the Administrator with a Wizard to simplify the creation of a DomainKey with which you can sign outgoing mail.

Install at your Domain Registry

Install the record you create as a TXT record in your DNS records.

For example, in the second row below:

And confirm it is correctly installed with a DKIM checker

 

Confirmation

You can check that you have created the DomainKey correctly by using a checker, such as:

DKIMCore checker...

  

Background

 

What is DKIM?

Read an full explanation of DKIM here...  and here...

 

Precis:

DomainKeys adds a header named "DomainKey-Signature" that contains a digital signature of the contents of the mail message. The default parameters for the authentication mechanism are to use SHA-1 as the cryptographic hash and RSA as the public key encryption scheme, and encode the encrypted hash using Base64.

The receiving SMTP server then uses the name of the domain from which the mail originated, the string _domainkey, and a selector from the header to perform a DNS lookup; the returned data includes that domain's public key. The receiver can then decrypt the hash value in the header field and at the same time recalculate the hash value for the mail body that was received, from the point immediately following the "DomainKey-Signature:" header. If the two values match, this cryptographically proves that the mail did in fact originate at the purported domain, and has not been tampered with in transit. 

Setting up DKIM (outside Mailtraq)

Read more about the background and methods used with DomainKeys here.

 

Tip

Administrators should consider the merits of implementing DKIM. 

The inherent weaknesses of the system have meant that it is not widely adopted by MTAs - Yahoo mail and AOL mail do make use of it. Unless you are getting mail rejected specifically because of DKIM failures our general advice is not to bother


 

Download Trial
Buy now
Screenshots
Requirements
Feature Tree
FAQs
What's new
Print this pagePrint this Page  
Mailtraq 2.12 PDFDatasheet  
Send a friend an email about MailtraqShareMailtraq - Email Server at Delicious Mailtraq - Mail Server at digg Mailtraq - Mail Server at FacebookMailtraq - Email Server at stumbleupon Tweet about Mailtraq 

 

 

 
Mailtraq Highlights...
 SMTP Server     Mailtraq SMTP email server video IMAP Server     Mailtraq IMAP email Server video
 POP3 Server     Mailtraq POP3 email server video Proxy Server     Mailtraq proxy email server video
 Webmail Server     Mailtraq webmail email server video Mailing-list Server     Mailing list email server video
 Groupware Services     Mailtraq groupware email services video Spam and Virus control     Spam and virus control email server video

 

   Copyright © 2003 - 2011 Enstar Ltd, Enstar LLC & Fastraq Ltd. All rights reserved. Privacy policy.
   Mailtraq® is a registered trademark of Fastraq Limited.