2017-06-06 22:00:34 +02:00
|
|
|
# If false, messages with empty envelope from are not signed
|
2019-09-23 10:44:58 +02:00
|
|
|
allow_envfrom_empty = true;
|
2017-06-06 22:00:34 +02:00
|
|
|
# If true, envelope/header domain mismatch is ignored
|
2019-09-23 10:44:58 +02:00
|
|
|
allow_hdrfrom_mismatch = true;
|
2017-06-06 22:00:34 +02:00
|
|
|
# If true, multiple from headers are allowed (but only first is used)
|
2019-09-23 10:44:58 +02:00
|
|
|
allow_hdrfrom_multiple = false;
|
2017-06-06 22:00:34 +02:00
|
|
|
# If true, username does not need to contain matching domain
|
2017-07-21 11:03:35 +02:00
|
|
|
allow_username_mismatch = false;
|
2017-06-06 22:00:34 +02:00
|
|
|
# If false, messages from authenticated users are not selected for signing
|
2019-09-23 10:44:58 +02:00
|
|
|
auth_only = false;
|
2017-06-06 22:00:34 +02:00
|
|
|
# Default path to key, can include '$domain' and '$selector' variables
|
|
|
|
path = "/data/dkim/keys/$domain.dkim";
|
|
|
|
# Default selector to use
|
|
|
|
selector = "dkim";
|
|
|
|
# If false, messages from local networks are not selected for signing
|
2019-09-23 10:44:58 +02:00
|
|
|
sign_local = false;
|
2017-06-06 22:00:34 +02:00
|
|
|
# Symbol to add when message is signed
|
|
|
|
symbol = "ARC_SIGNED";
|
|
|
|
# Whether to fallback to global config
|
|
|
|
try_fallback = true;
|
|
|
|
# Domain to use for DKIM signing: can be "header" or "envelope"
|
2019-09-23 10:44:58 +02:00
|
|
|
use_domain = "recipient";
|
2017-06-06 22:00:34 +02:00
|
|
|
# Whether to normalise domains to eSLD
|
2019-09-23 10:44:58 +02:00
|
|
|
use_esld = true;
|
2017-06-06 22:00:34 +02:00
|
|
|
# Whether to get keys from Redis
|
|
|
|
use_redis = true;
|
|
|
|
# Hash for DKIM keys in Redis
|
|
|
|
key_prefix = "DKIM_PRIV_KEYS";
|
|
|
|
# Selector map
|
|
|
|
selector_prefix = "DKIM_SELECTORS";
|
2019-06-11 11:41:59 +02:00
|
|
|
sign_inbound = true;
|
|
|
|
use_domain_sign_inbound = "recipient";
|