Domain Keys Identified Mail (DKIM)¶

DKIM is a method for detecting forged sender addresses in emails, a common technique used in phishing attacks.

It lets official mail servers add a signature to headers of outgoing email and identifies a domain’s public key so other mail servers can verify the signature. As with SPF, DKIM helps keep mail from being considered spam. It also lets mail servers detect when mail has been tampered with in transit.

Rspamd is an e-mail filter system, which replaces Amavis and Spamassassin. It also is capable of signing outbound e-mails with DKIM keys. The status of Rspamd can be monitored via a simple web interface.

These configuration notes might save you from pulling your hair out during setup.

How DKIM works (and why it is not a silver bullet)
DKIM configuration
Rspamd configuration

Last update: 2025-05-19 17:28