kescher's blog

Leaving the bird site.

Sat, 30 Apr 2022 10:30:00 +0000

Why?

Unless you’ve been living under a rock, you might have noticed a certain billionaire’s push to bring Twitter under his control. If you think that’s not an issue, just check this list of tweets:

"The extreme antibody reaction from those who fear free speech says it all"
“Truth Social (terrible name) exists because Twitter censored free speech”
“A social media platform’s policies are good if the most extreme 10% on left and right are equally unhappy”

Anti…body… reaction… to… free… speech… and this techbro practically owns Twitter now?

This is, by far, not the only reason I’ve moved away from Twitter. More reasons include, but aren’t limited to):

Twitter’s moderation that will gladly send you automated emails where anti-semitic username profiles totally haven’t violated the Terms of Service by… doing what the terms of service explicitly disallow
all official client apps continuing to get worse
its API
its rate limits
its moderation that will automatically suspend people for using the German article “die” in a sentence, thinking it is a death threat, or for replying “shut up” to someone that just said you should belong to a percentage of dead people that has since been proven wrong.

All of these have been long-standing reasons for me to stop using Twitter. The thing with Elon, though, is certainly the “Straw that broke the camel’s back”.

Of course not. I have been active on the Fediverse already, for a long time on @kescher@notbird.site, and now that notbird.site is shutting down, at my own instance: @kescher@catcatnya.com. Feel free to sign up there!

You may also follow the RSS/Atom feed for this blog.

How to solve Rspamd not signing some emails with DKIM key

Sun, 13 Mar 2022 18:28:10 +0000

The issue, in detail

Let’s say, you have a mail server, reachable at mail.example.net. There is more than one domain assigned to it (example.net, but also example.org), so you can create aliases for your main email account (alice@example.net), and you can send using these aliases:

- alice@example.org
- admin@example.net
- admin@example.org

as well.

You’ve set up DKIM signing using rspamd. Your dkim_signing.conf looks like this:

path = "/var/lib/rspamd/dkim/$domain.$selector.key";
selector_map = "/etc/rspamd/dkim_selectors.map";

You’ve set up domainkey TXT records for both domains, and the selectors are set up. Yet, when you send an email as alice@example.org, from your user account alice@example.net, the DKIM key does not get attached.

The cause

The issue stems from rspamd’s DKIM signing defaults requiring emails from authenticated users to be sent from the exact username@domain combination that is stated in the From header. If you were to enable logging for the dkim_signing module, it would say “user domain mismatch”.

The solution

You should add the following to your dkim_signing.conf:

allow_hdrfrom_mismatch = true;
allow_username_mismatch = true;

Welcome to my new blog!

Sun, 06 Feb 2022 14:09:56 +0000

Hi! This site is where I’ll post my terrible opinions and other stuff in the future. :)