Difference between revisions of "DKIM"

Jump to navigation Jump to search
206 bytes added ,  10:13, 2 September 2021
m
 
(5 intermediate revisions by the same user not shown)
<indicator name="Faults">[[File:Menu-email.svg|link=:Category:Email|30px|Back up to the Email Category]]</indicator>
 
Support staff can help in adding DKIM signing for domains we host.
'''WORK IN PROGRESS
'''
'''Currently being trialled by staff, not available to customers yet'''
 
'''Examples and confg is likely to change before customers are able to use DKIM
'''
== Important: ==
As with SPF, if you use DKIM/DMARC then you will also want to make sure that all email that you send from your domain is sent through email servers that will sign
Also see [[SPF Record]]
 
DKIM is one of many methods which tries to protect email senders and recipients from spoofing/spam. and to proove that an email hasn't been tampered with.
 
A domain owner can add DNS records which will publish a public key in a specially formatted
 
Even if messages are just signed, then this can help them not to be marked as spam by the recipient. This can help prevent messages that our customers send to gmail/outlook being put in to spam folders.
 
====Long txt records?====
If you are adding your own txt records and they are over 256 characters long, see [[Domains:DNS_Types]] for details on how to 'split' the record in to separate chunks.
 
== Signing by smtp.aa.net.uk ==
aaisp2._domainkey CNAME aaisp2.dkim.aa.net.uk
aaisp3._domainkey CNAME aaisp3.dkim.aa.net.uk
 
We have three selectors which enable us to roll over the keys easily.
 
== What if I send email via other mail servers ==
=DMARC=
 
This is just a brief overview of DKIMDMARC, you can read more about DKIM on other place or RFC7489
 
Adding a DMARC DNS record is optional, but can be beneficial.

Navigation menu