Opendmarc and Opendkim logs in /var/log/maillog

General eFa discussion
Post Reply
santoshk75
Posts: 2
Joined: 22 Jul 2020 13:47

Opendmarc and Opendkim logs in /var/log/maillog

Post by santoshk75 »

Dear Friends,
I had recently implemented eFa server as incoming mail server for my domain. All the configuration is fine. I wanted to see opendmarc and opendkim logs in maillog mentioning SPF/DKIM/DMARC results. However I am not able to see any entries in maillog except

Jul 22 19:01:13 mx2 opendmarc[8433]: OpenDMARC Filter: mi_stop=1
Jul 22 19:01:13 mx2 opendmarc[8433]: OpenDMARC Filter v1.3.2 terminating with status 0, errno = 0
Jul 22 19:01:13 mx2 opendmarc[14026]: OpenDMARC Filter: Opening listen socket on conn inet:8893@localhost
Jul 22 19:01:13 mx2 opendmarc[14027]: OpenDMARC Filter v1.3.2 starting (args: -c /etc/opendmarc.conf -l -vvvv -P /var/run/opendmarc/opendmarc.pid)
Jul 22 19:01:13 mx2 opendmarc[14027]: additional trusted authentication services: mx2
Jul 22 19:27:32 mx2 opendkim[19448]: OpenDKIM Filter v2.11.0 starting (args: -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid)

few contents of /etc/opendmarc.conf

MilterDebug 9
RecordAllMessages true
SoftwareHeader true
SPFIgnoreResults true
SPFSelfValidate true
Syslog true
SyslogFacility mail

few contents of /etc/opendkim.conf

Mode v
Syslog yes
SyslogSuccess yes
LogWhy yes


Can anybody help me, how to ensure detail logs of SPF, DKIM, DMARC results/failures in /var/log/maillog
Thanks in advance for your support.
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Opendmarc and Opendkim logs in /var/log/maillog

Post by pdwalker »

Won't the SPF, DKIM, and DMARC results be shown in your mail headers for the message?

If you want to ensure that the tests are working, run a message through debug mode and check the results.

Use the "spamtest" script to make that easier for you
viewtopic.php?f=14&t=4349&p=16200&hilit=spamtest#p16200
santoshk75
Posts: 2
Joined: 22 Jul 2020 13:47

Re: Opendmarc and Opendkim logs in /var/log/maillog

Post by santoshk75 »

Thanks Pdwalker.
I have checked spamassassin -D -t. It gives all the test of the spam assassin.
I would like to have opendkim and dmarc enabled in my eFa which I feel I did in the eFa configuration. But I am not getting any logs like this in maillog and dmarc,dkim,spf results in the headers of the mails. How can i achieve this?

DMARC-Filter: OpenDMARC Filter v1.3.2 mx.example.com 2A0BB5F09
Authentication-Results: mx.example.com; dmarc=fail (p=none dis=none) header.from=example.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mx.example.com;
s=mx1abcd; t=1577849434;
bh=0TSaDsGzLhhU4kZWKQR9VDiR3tLkYJwf9Z3OxgaWk/o=;
h=From:Date:Subject:To;
b=GISGdyfSvH/ZlNbrzfN+Bw8FOHX/qkZhzuOAgF9+8i4OPm0rORhv6+StlP7moQnkf
NfdXlMSqB0ljXGSNgf4Pi9pGFyRf/NSdfBzz2Dt45CzNy/yq0tI1bX5zlnM8WLqJwh
cffiwvjVKRL0MjT2qbUR7/4bH4dCJd9VxKhG7GoA=
Received-SPF: pass (gmail.com ... _spf.google.com: Sender is authorized to use 'xyzuser@gmail.com' in 'mfrom' identity (mechanism 'include:_netblocks.google.com' matched)) receiver=mx.example.com; identity=mailfrom; envelope-from="xyzuser@gmail.com"; helo=mail-ot1-f42.google.com; client-ip=209.85.210.42
DMARC-Filter: OpenDMARC Filter v1.3.2 mx.example.com 47F0B5C10
Authentication-Results: mx.example.com; dmarc=fail (p=none dis=none) header.from=example.com
Authentication-Results: mx.example.com; spf=pass smtp.mailfrom=xyzuser@gmail.com
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Opendmarc and Opendkim logs in /var/log/maillog

Post by pdwalker »

I should clarify - the test script will show you the results of the tests from incoming messages, not for outgoing messages.

I'll need to check my eFa instance and try to remember how I turned everything all on.
Post Reply