OpenDKIM icon indicating copy to clipboard operation
OpenDKIM copied to clipboard

Published 20 hours ago verified publisher icon trusteddomainproject

Opendkim.org is down

Open vagari opened this issue 3 years ago • 5 comments

Just recently started using the library to handle email signing on our dedicated server. Been enjoying Drupal's Webform (/s) failing to properly pass HTML emails. ;-)

Regardless, I noticed last night, and continues this morning, that opendkim.org has disappeared. I had a tab with some documentation open last week while working on my project, so it's a very recent event. I wasn't sure where to report this. Hopefully it can be brought back online quickly.

vagari avatar Jun 01 '21 15:06 vagari

From the WHOIS database...

Updated Date: 2021-05-31T04:26:55Z Creation Date: 2009-05-30T17:50:35Z

I'll hazard a guess and say someone did not pay their bills.

The nameservers look a bit sus...

Name Server: MEDUSA.BLACKOPS.ORG Name Server: NS.SECONDARY2.COM

bib1963 avatar Jun 02 '21 19:06 bib1963

On Wed, 2 Jun 2021, bib1963 wrote:

From the WHOIS database...

Updated Date: 2021-05-31T04:26:55Z Creation Date: 2009-05-30T17:50:35Z

I'll hazard a guess and say someone did not pay their bills.

The nameservers look a bit sus...

Name Server: MEDUSA.BLACKOPS.ORG Name Server: NS.SECONDARY2.COM

Those are actually the right nameservers.

-Dan

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe.[AAIWKKHFIFGHXZHMZPJI43TTQ2DH7A5CNFSM4545AGNKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOGLOOI5Y.gif]

--

--------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC FB: fb.com/DanielMahoneyIV LI: linkedin.com/in/gushi Site: http://www.gushi.org

thegushi avatar Jun 02 '21 22:06 thegushi

It appears to only be HTTPS that is broken. Insecure HTTP still works. The server refuses connection attempts for HTTPS. https://www.ssllabs.com/ssltest/analyze.html?d=www.opendkim.org

Probably related to the fact that the TLS certificate for www.opendkim.org expired weeks ago. https://crt.sh/?id=2930394866 And it looks like probably there never has been a correct certificate for opendkim.org (without www).

The certificate for www.trusteddomain.org (ironically) also expired weeks ago. https://crt.sh/?id=2925628084 For some reason there is no DNS host record for trusteddomain.org (without www).

Anyway, the content on the websites is super old and outdated and they still (!) have never even bothered to make any public mention anywhere that everything moved to this GitHub ages ago. Clearly it's a very actively- and well-maintained project we would all be wise to continuing trusting our email security to. /s

mikenor avatar Jun 22 '21 23:06 mikenor

We've got plans to move a lot of this to AWS on a fresher machine.

There are some behind-the-scenes bits that need to happen for that.

-Dan

On Jun 22, 2021, at 4:11 PM, Michael Norton @.***> wrote:

It appears to only be HTTPS that is broken. Insecure HTTP still works. The server refuses connection attempts for HTTPS. https://www.ssllabs.com/ssltest/analyze.html?d=www.opendkim.org https://www.ssllabs.com/ssltest/analyze.html?d=www.opendkim.org Probably related to the fact that the TLS certificate for www.opendkim.org http://www.opendkim.org/ expired weeks ago. https://crt.sh/?id=2930394866 https://crt.sh/?id=2930394866 And it looks like probably there never has been a correct certificate for opendkim.org (without www).

The certificate for www.trusteddomain.org http://www.trusteddomain.org/ (ironically) also expired weeks ago. https://crt.sh/?id=2925628084 https://crt.sh/?id=2925628084 For some reason there is no DNS host record for trusteddomain.org (without www).

Anyway, the content on the websites is super old and outdated and they still (!) have never even bothered to make any public mention anywhere that everything moved to this GitHub ages ago. Clearly it's a very actively- and well-maintained project we would all be wise to continuing trusting our email security to. /s

— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/trusteddomainproject/OpenDKIM/issues/127#issuecomment-866396136, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAIWKKEQNCBLVZQD73OM573TUEKCHANCNFSM4545AGNA.

thegushi avatar Jun 26 '21 19:06 thegushi

Nearly a year and a half later, www.opendkim.org is still outdated and still has no HTTPS. It took me quite a while to find my way here because the Fedora and Debian packages refer to opendkim.org as upstream. Lacking a proper un-abandoned website, I think the packages should point to this repository instead.

Rombobeorn avatar Nov 21 '22 09:11 Rombobeorn