On 1/31/25 14:37, Tug Williams via linux wrote:
I will pursue using the teksavvy smtp relay, and see if that can work.
In the mean time I can still receive emails.
To follow up. Sending is working now.
__SPF__
To use the smtp.teksavvy.com relay on port 25 I need the following SPF
record in my DNS
Type: TXT
Name: @
Data: v=spf1 a mx include:_spf.teksavvy.com -all
__DKIM__
I had a typo in the name field.
Type: TXT
Name: <selector>._domainkey
Data: v=DKIM1 ; k=rsa; p=<big long ascii public key gubbins generated
from opendkim on my server>
__DMARC__
Google requires /either/ DKIM or SPF to pass, I want to require both to
pass. So I want a DMARC policy which will, for now, quarantine
everything, though perhaps I'll reject once I know what's happening.
Type: TXT
Name: _dmarc
Data: v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarc-rua@<my domain>;
ruf=mailto:dmarc-ruf@<mydomain>; fo=0:1:d:s
p and v are required, the other field types are optional
rua and ruf are aggregate and forensic reports. I have no idea what they
will contain, but time will tell.
fo means what types of forensic reports. I have turned on all, until I
get bored of the messages
__result__
Sending an email to a gmail account arrives with header containing
confirmation
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i <blah blah>
spf=pass (google.com: domain of <blah blah>
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) <blah blah>