Amavis Signing Incoming Mail

Stephen Guglielmo srguglielmo at gmail.com
Sat May 12 15:26:59 CEST 2012


On Sat, May 12, 2012 at 2:29 AM, Klaus Tachtler <klaus at tachtler.net> wrote:
> Hi,
>
>
>> Hey,
>>
>> I have Amavis-new setup with Postfix, ClamAV, and spamassassin. I have
>> it verifying and signing emails using dkim.
>
>
> me too.
>
>
>>
>> As you can see, it says "just generated, assumed good." I want to sign
>> all outgoing mail, but what is the point of signing incoming mail as
>> well? Is there a way to prevent this?
>>
>
> I had the same problem, and the solution was, a wrong NAT rule in my
> IPTABLES setting. The rule sad, to NAT incoming IP addresses to the trusted
> interface IP address. So amavisd-new had signed all incoming and outgoing
> e-mails. I've seen this, because I use alterMIME to add a signature at the
> end of the email.
>
> Maybe this could help you, or I'm wrong.
>
>
> Klaus.
>
>

Thanks for the reply. I don't think this is causing the issue for me
because I don't use any type of NAT on this box (running the pf
firewall on FreeBSD). I do use NAT on the upstream router, but nothing
on the box itself. I have a local IP address, 10.x.x.x on the machine,
and the upstream router has an external IP. But amavis-new is
listening on lmtp 127.0.0.1 and postfix is forwarding to that. Is
there an option in the config file for excluding certain mail from
dkim signing, or something similar?
Thanks.


More information about the amavis-users mailing list