Aug. 15th, 2023

DKIM: rotate and publish your keys

Aug. 15th, 2023 01:08 am
diziet: (Default)

If you are an email system administrator, you are probably using DKIM to sign your outgoing emails. You should be rotating the key regularly and automatically, and publishing old private keys. I have just released dkim-rotate 1.0; dkim-rotate is a tool to do this key rotation and publication.

If you are an email user, your email provider ought to be doing this. If this is not done, your emails are “non-repudiable”, meaning that if they are leaked, anyone (eg, journalists, haters) can verify that they are authentic, and prove that to others. This is not desirable (for you).

Details including advice for users )

Tags:

Profile

diziet: (Default)
Ian Jackson
My Website

March 2025

S M T W T F S
      1
2345678
9101112131415
16171819202122
2324252627 2829
3031     

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Top of page