proxmox-mirrors/pmg-api
1
0
Fork 0
mirror of https://git.proxmox.com/git/pmg-api synced 2026-01-09 12:11:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
2dd922aa82
pmg-api/debian/dirs
Stoiko Ivanov ad6e35cf95 add PMG::DKIMSign module 
the module serves 3 purposes:
* it extends Mail::DKIM::Signer:
  * it provides a glue layer between MIME::Entity's output method (which
    expects print and uses \n as line terminator) and Mail::DKIM::Signer's
    PRINT method (which expects \r\n)

* it integrates with PMG's config
  * the domain which should be used for signing is selected based on the
    sender's e-mail address and the DKIM-settings in PMG-configuration
  * it provides a method which takes a MIME::Entity and returns it with
    signature
  * certain headers get oversigned (in order to prevent adding a previously
    non-existing header (e.g. Reply-To) and retaining a valid signature).
    the list of headers which are oversigned is inspired by rspamd's choice [0].
    for rationale see [1,2]

* it provides methods for handling selectors and keys.

[0] https://rspamd.com/doc/modules/dkim_signing.html#sign-headers
[1] https://noxxi.de/research/breaking-dkim-on-purpose-and-by-chance.html
[2] https://github.com/rspamd/rspamd/issues/2136

Signed-off-by: Stoiko Ivanov <s.ivanov@proxmox.com>
2019-10-23 11:11:19 +02:00

5 lines
56 B
Plaintext
Raw Blame History

/etc/pmg
/etc/pmg/dkim
/var/lib/pmg
/var/lib/pmg/backup
Reference in New Issue View Git Blame Copy Permalink