SmarterMail 13.x Help

Mail Signing

This settings page is only available to domain administrators.

Mail signing protocols, such as DomainKeys and DKIM signing, verify the authenticity of a message and can be used to protect users from phishing schemes or spam attacks.

To edit the mail signing settings, click the settings icon. Then expand the Domain Settings and Advanced Settings folders and click Mail Signing in the navigation pane.

Options

Use this tab to edit the following options:

  • Enable DomainKey Signing - Select this option to authenticate email with DomainKeys headers.
  • Enable DKIM Signing - Select this option to to authenticate email with DKIM headers.

Certificate

Use this tab to edit the following settings:

  • Selector - Type any identifier you like in this field. It is recommended the key is changed once every 12 months.
  • Key Size - The size of the key. Remember, the larger the key, the stronger it is.

DomainKeys Signing

Use this tab to specify how closely you want the system to monitor messages in transit.

  • nofws - This is the default and will allow basic in-transit changes to messages.
  • Simple - This is more strict and will not allow as many in-transit changes to messages.

DKIM Signing

Use this tab to specify how closely you want the system to monitor messages in transit.

  • Body Canonicalization - The method used to monitor in-transit changes to the body of a message.
  • Header Canonicalization - The method used to monitor in-transit changes to the header of a message.
  • Hash Algorithm - The method used to verify the DKIM signature.
  • Header Field Signing - The header fields included in the hash algorithm. This is further defined by header fields.
  • Header Fields - The header fields included in the hash algorithm.