Emails not getting signed by DKIM when sent using discourse

o_o1 · May 4, 2024, 10:18pm

I have discourse installed on VPS
I have directadmin installed on a different managed VPS running exim smtp

In discourse I used SMTP server details on the directadmin VPS

I checked emails with isnotspam.com

Sending email using thunderbird with directadmin SMTP

Result: pass
ID(s) verified: [header.From=discourse@example.com](mailto: header.From=discourse@example.com)
Selector=x
domain=example.com
DomainKeys DNS Record=x._domainkey.example.com

BUT if I send it out using discourse the result passes, but no selector

Result: pass
ID(s) verified: [header.From=discourse@example.com](mailto :header.From=discourse@example.com)
Selector=
domain=
DomainKeys DNS Record=._domainkey.

Any ideas?

supermathie · May 4, 2024, 10:49pm

Which component are you expecting to be doing the DKIM signing?

o_o1 · May 5, 2024, 6:25am

My SMTP server should.

However when emails are sent from discourse it’s not getting signed the same.

I’m wondering if it has to do with the helo forum.example.com

Thomas_Rother · May 5, 2024, 6:41am

You gave the answer yourself Discourse acts as an smtp client and the dkim signing must be provided by the smtp server receiving the mails from Discourse.

o_o1 · May 5, 2024, 6:51am

Yes correct.

So the different signing results when checked with isnotspam was confusing me.

Anyway , I re ran the test today and now it passes

–

----------------------------------------------------------
DKIM check details:
----------------------------------------------------------

Result: pass
ID(s) verified: header.From=discourse@example.com
Selector=x
domain=example.com
DomainKeys DNS Record=x._domainkey.example.com

Not sure what happened, but I did have to update my DNS txt key inside cloudflare, as well as update the rDNS for the mail server.

Maybe it just required time for everything to propagate or clear some cache?

supermathie · May 6, 2024, 10:48pm

In the previous test:

Result: pass
ID(s) verified: [header.From=discourse@example.com](mailto :header.From=discourse@example.com)
Selector=
domain=
DomainKeys DNS Record=._domainkey.

there was no DKIM record, so it wasn’t signed.

DNS doesn’t propagate, remember.

Regardless, now the mail is signed so you should be good?

o_o1 · May 7, 2024, 7:14am

Yep its signs on checking, so something needed cache updating

Topic		Replies	Views
Why are e-mails sending from @discoursemail.com? Support	4	4061	July 1, 2024
DKIM - Body hash does not verify - on email sent from Discourse Support	4	146	September 19, 2024
Email failure after install Installation	8	1135	April 24, 2020
DKIM key was provided incorrect Support	11	3851	January 17, 2015
E-Mail not working after moving to self-hosting and adding DKIM record Installation	4	1486	December 6, 2021

Emails not getting signed by DKIM when sent using discourse

Sending email using thunderbird with directadmin SMTP

Related topics