mailinabox icon indicating copy to clipboard operation
mailinabox copied to clipboard

Published 20 hours ago verified publisher icon mail-in-a-box

Custom DKIM selector

Open bilogic opened this issue 1 year ago • 7 comments

Hi!

Is it possible to specify another DKIM selector other than mail?

bilogic avatar Jan 04 '24 08:01 bilogic

I had a quick look over the source code, seems easy. However, some questions as I'm not familiar with python

  1. ~Can the python code already read values from etc/mailinabox.conf?~ Seems to be the env variable.
  2. I think adding a DKIM_SELECTOR=mail as default
  3. The PR will likely touch 2 scripts, test_dns.py and dns_update.py, ok?

bilogic avatar Jan 04 '24 09:01 bilogic

I have some commits here https://github.com/mail-in-a-box/mailinabox/compare/main...bilogic:mailinabox:custom-dkim-selector, apologies that it is mixed in with a configurable TTL feature.

The main change is on line 792 of dns_update.py where I replaced mail with {selector}

My problem is, why does the /admin#external_dns still show mail._domainkey...? Where is the code to make the page reflect the custom selector?

bilogic avatar Jan 04 '24 10:01 bilogic

#2220 replaces OpenDKIM with dkimpy. My recommendation would be to work with @kiekerjan as your changes seem reasonable to me as I have issues with using mail as a selector because there are commercial services using the same selector so there is a potential to be in conflict. Better would be either configurable selector or at least something unique.

Then, ideally, this stimulates getting the PR merged.

myfirstnameispaul avatar Jan 04 '24 15:01 myfirstnameispaul

Look at the dkim.sh script in the setup directory. There the default dns entry is generated. Because this is done only at initial setup, you need to include some logic to generate a new mail.txt on every run of the setup, or include generating the dns record in dns_update.py

Also, in start.sh you might want to use something like DKIM_SELECTOR=${DEFAULT_DKIM_SELECTOR:-mail} Your current code will always use mail as selector (and overwrite anything else)

kiekerjan avatar Jan 04 '24 16:01 kiekerjan

Just finished a hardware migration. Thank you for the info, let me find some time to review them.

But 1 quick qn first, is the maintainer open to accepting dkimpy first?

bilogic avatar Jan 04 '24 17:01 bilogic

python and bash are like my 5th language 🤣

@myfirstnameispaul

Definitely configurable (and not just something different). Since we are going to change it, let's provide an end-all solution. From the looks of it, this is not a very big change here, so if and when we switch to dkimpy, I would be happy to help.

@kiekerjan

  1. ~I'm thinking of asking for a selector at initial setup and it should not be touched again, trying to accomplish this with minimum code rather than introduce the same logic in different parts of the code, or do you have some ideas? Do share!~ The use of DEFAULT_DKIM_SELECTOR feels sufficiently configurable yet simple to me (aligned with aims of MIAB). What do you think?
  2. ~I made the change in start.sh, but where does $DEFAULT_DKIM_SELECTOR come from?~ All lines in an existing mailinbox.conf are prefixed with DEFAULT_

Thanks!

bilogic avatar Jan 05 '24 06:01 bilogic

My new branch with the key bits here https://github.com/mail-in-a-box/mailinabox/commit/b51550de1120ffdb63c299c64f6837004442de80

Please help me to review. Thank you.

bilogic avatar Jan 05 '24 07:01 bilogic