33 lines
1.2 KiB
Plaintext
33 lines
1.2 KiB
Plaintext
# If false, messages with empty envelope from are not signed
|
|
allow_envfrom_empty = false;
|
|
# If true, envelope/header domain mismatch is ignored
|
|
allow_hdrfrom_mismatch = false;
|
|
# If true, multiple from headers are allowed (but only first is used)
|
|
allow_hdrfrom_multiple = true;
|
|
# If true, username does not need to contain matching domain
|
|
allow_username_mismatch = false;
|
|
# If false, messages from authenticated users are not selected for signing
|
|
auth_only = true;
|
|
# Default path to key, can include '$domain' and '$selector' variables
|
|
path = "/data/dkim/keys/$domain.dkim";
|
|
# Default selector to use
|
|
selector = "dkim";
|
|
# If false, messages from local networks are not selected for signing
|
|
sign_local = true;
|
|
# Symbol to add when message is signed
|
|
symbol = "ARC_SIGNED";
|
|
# Whether to fallback to global config
|
|
try_fallback = true;
|
|
# Domain to use for DKIM signing: can be "header" or "envelope"
|
|
use_domain = "envelope";
|
|
# Whether to normalise domains to eSLD
|
|
use_esld = false;
|
|
# Whether to get keys from Redis
|
|
use_redis = true;
|
|
# Hash for DKIM keys in Redis
|
|
key_prefix = "DKIM_PRIV_KEYS";
|
|
# Selector map
|
|
selector_prefix = "DKIM_SELECTORS";
|
|
sign_inbound = true;
|
|
use_domain_sign_inbound = "recipient";
|