-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
I am seeing occasional DKIM signature failures (as seen in DMARC rua=
reports) which I suspect may be caused by sendmail 7 to 8 bit mime
conversions. We receive a message from a client via port 587, and relay
it to
comcast.net which advertises 8BITMIME. A small fraction of those
messages are failing the DKIM signature check at comcast.
The opendkim milter is the first milter listed in
sendmail.mc. We have
FEATURE(nocanonify) in both
sendmail.mc and
submit.mc, although I don't
think
submit.mc is used in this relay scenario.
Is there a way to prevent sendmail from doing any 7to8 (or 8to7) bit
conversions, and just send the message the way opendkim signed it?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
iEYEAREKAAYFAlkIloIACgkQL6j7milTFsFP6gCeIwlzzaxSADmkDOQAp7glB9xI
L60AnR4hnTgrwbEHqWMyWCDJV+rACPks
=TqjH
-----END PGP SIGNATURE-----