starred/dkim-exchange-Pro
1
0
Fork 0
mirror of https://github.com/Pro/dkim-exchange.git synced 2026-04-25 08:55:52 +03:00
Code Issues 4 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #67] sub-domain not used in header #50

New issue
Closed
opened 2026-02-26 10:35:25 +03:00 by kerem · 10 comments
kerem commented 2026-02-26 10:35:25 +03:00
Owner
Copy link

Originally created by @gogglespisano on GitHub (Oct 10, 2014).
Original GitHub issue: https://github.com/Pro/dkim-exchange/issues/67

I've configured example.com and sub,example.com. Both have all the required dns keys (working on a previous version).

When I send mail from user@sub.example.com the header has d=example.com, not d=sub.example.com. The earlier version sent d=sub.example.com. I've tried change between simple and relaxed with no change.

is this a bug, or a new configuration setting I've missed?

Thanks,
-Stuart

Originally created by @gogglespisano on GitHub (Oct 10, 2014). Original GitHub issue: https://github.com/Pro/dkim-exchange/issues/67 I've configured example.com and sub,example.com. Both have all the required dns keys (working on a previous version). When I send mail from user@sub.example.com the header has d=example.com, not d=sub.example.com. The earlier version sent d=sub.example.com. I've tried change between simple and relaxed with no change. is this a bug, or a new configuration setting I've missed? Thanks, -Stuart
kerem 2026-02-26 10:35:25 +03:00
  • closed this issue
  • added the
    bug
    agent
         labels
kerem commented 2026-02-26 10:35:25 +03:00
Author
Owner
Copy link

@gogglespisano commented on GitHub (Oct 21, 2014):

The problem seems to be the following code in Exchange.DkimSigner\DkimSigningRoutingAgent.cs

Beyond the sub-domain matching, it appears it would also match abc.net.example.com to abc.net which would be very wrong.

As far as I can tell, the domain list isn't sorted, so as a feature it won't necessarily pick the domain closest to the root domain of a sub-domain. It will pick the last domain in the list with a partial match.

What is the reason for using Contains()? Can == not be used?

    private void SignMailItem(MailItem mailItem)
    {

...
if (mailItem.FromAddress.DomainPart
.ToUpperInvariant()
.Contains(e.Domain.ToUpperInvariant()))
domain = e;

Also, this code doesn't change with each loop interation, so it can be moved above the forech statement.

                if (mailItem.FromAddress == null || mailItem.FromAddress.DomainPart == null)
                {
                    Logger.LogWarning("Invalid from address: '" + mailItem.FromAddress + "'. Not signing email.");
                    continue;
                }
<!-- gh-comment-id:59971007 --> @gogglespisano commented on GitHub (Oct 21, 2014): The problem seems to be the following code in Exchange.DkimSigner\DkimSigningRoutingAgent.cs Beyond the sub-domain matching, it appears it would also match abc.net.example.com to abc.net which would be very wrong. As far as I can tell, the domain list isn't sorted, so as a feature it won't necessarily pick the domain closest to the root domain of a sub-domain. It will pick the last domain in the list with a partial match. What is the reason for using Contains()? Can == not be used? ``` private void SignMailItem(MailItem mailItem) { ``` ... if (mailItem.FromAddress.DomainPart .ToUpperInvariant() .Contains(e.Domain.ToUpperInvariant())) domain = e; Also, this code doesn't change with each loop interation, so it can be moved above the forech statement. ``` if (mailItem.FromAddress == null || mailItem.FromAddress.DomainPart == null) { Logger.LogWarning("Invalid from address: '" + mailItem.FromAddress + "'. Not signing email."); continue; } ```
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@Pro commented on GitHub (Oct 21, 2014):

Thanks for your issue report.
That's definetly a bug and not a misconfiguration.
As you already wrote the lines

if (mailItem.FromAddress.DomainPart
.ToUpperInvariant()
.Contains(e.Domain.ToUpperInvariant()))
domain = e;

should be changed to

if (mailItem.FromAddress.DomainPart
.ToUpperInvariant()
.Equals(e.Domain.ToUpperInvariant())) {
    domain = e;
    break;
}

and the FromAddress check shoud be out of the loop.

Currently I don't have access to my workstation. I'll fix this when I'm back in one to two weeks.

<!-- gh-comment-id:59982362 --> @Pro commented on GitHub (Oct 21, 2014): Thanks for your issue report. That's definetly a bug and not a misconfiguration. As you already wrote the lines ``` if (mailItem.FromAddress.DomainPart .ToUpperInvariant() .Contains(e.Domain.ToUpperInvariant())) domain = e; ``` should be changed to ``` if (mailItem.FromAddress.DomainPart .ToUpperInvariant() .Equals(e.Domain.ToUpperInvariant())) { domain = e; break; } ``` and the FromAddress check shoud be out of the loop. Currently I don't have access to my workstation. I'll fix this when I'm back in one to two weeks.
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@gogglespisano commented on GitHub (Oct 21, 2014):

Thanks for taking a look and thanks in advance for the fix.

<!-- gh-comment-id:59987488 --> @gogglespisano commented on GitHub (Oct 21, 2014): Thanks for taking a look and thanks in advance for the fix.
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@AlexLaroche commented on GitHub (Nov 13, 2014):

@Pro: We should provide a new release before close a issue.

<!-- gh-comment-id:62821905 --> @AlexLaroche commented on GitHub (Nov 13, 2014): @Pro: We should provide a new release before close a issue.
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@gogglespisano commented on GitHub (Nov 13, 2014):

Do you have an ETA for a new release?

<!-- gh-comment-id:62835756 --> @gogglespisano commented on GitHub (Nov 13, 2014): Do you have an ETA for a new release?
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@Pro commented on GitHub (Nov 13, 2014):

It's good coding practice to close an issue as soon it is fixed within the code rather then closing it after the modified code is released.
Otherwise it's difficult to keep track which issues are already fixed (and not yet released) and which still need to be fixed.

The Issue Milestone feature can be used to keep track if the issue is already integrated into a release or not.

@gogglespisano I'll do some test and then release a version including this bugfix today or in the next few days

<!-- gh-comment-id:62881011 --> @Pro commented on GitHub (Nov 13, 2014): It's good coding practice to close an issue as soon it is fixed within the code rather then closing it after the modified code is released. Otherwise it's difficult to keep track which issues are already fixed (and not yet released) and which still need to be fixed. The Issue Milestone feature can be used to keep track if the issue is already integrated into a release or not. @gogglespisano I'll do some test and then release a version including this bugfix today or in the next few days
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@Pro commented on GitHub (Nov 27, 2014):

@gogglespisano today I released version 2.1.0 which fixes this issue.

<!-- gh-comment-id:64795662 --> @Pro commented on GitHub (Nov 27, 2014): @gogglespisano today I released version 2.1.0 which fixes this issue.
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@gogglespisano commented on GitHub (Nov 30, 2014):

I had problems installing 2.1.2. I was upgrading from 2.0.3.

It failed during the zip extraction because of file in use. This happening using the GUI update or downloading and installing from the downloaded files. I had to disable the signer, then upgrade, then enable the signer.

<!-- gh-comment-id:65000012 --> @gogglespisano commented on GitHub (Nov 30, 2014): I had problems installing 2.1.2. I was upgrading from 2.0.3. It failed during the zip extraction because of file in use. This happening using the GUI update or downloading and installing from the downloaded files. I had to disable the signer, then upgrade, then enable the signer.
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@Pro commented on GitHub (Nov 30, 2014):

Hm, this looks like the MSExchangeTransport wasn't stopped properly.
First the files are unzipped into temp, then the service is stopped and then the files are copied.
Are you sure that zip extraction step failed, or may it have been the copy step? I tested on my machine and it worked fine. I think version 2.1.2 should fix this.

(For the next time please open a new issue instead of replying to an old one, this makes it easier to keep track of different issues, thanks :) )

<!-- gh-comment-id:65000291 --> @Pro commented on GitHub (Nov 30, 2014): Hm, this looks like the MSExchangeTransport wasn't stopped properly. First the files are unzipped into temp, then the service is stopped and then the files are copied. Are you sure that zip extraction step failed, or may it have been the copy step? I tested on my machine and it worked fine. I think version 2.1.2 should fix this. (For the next time please open a new issue instead of replying to an old one, this makes it easier to keep track of different issues, thanks :) )
kerem commented 2026-02-26 10:35:26 +03:00
Author
Owner
Copy link

@gogglespisano commented on GitHub (Nov 30, 2014):

I entered a new issue for it.

The good news is my email is now verifying with the correct domain name ☺

Thanks,
-Stuart

From: Stefan Profanter [mailto:notifications@github.com]
Sent: Sunday, November 30, 2014 1:06 PM
To: Pro/dkim-exchange
Cc: Stuart Wyatt
Subject: Re: [dkim-exchange] sub-domain not used in header (#67)

Hm, this looks like the MSExchangeTransport wasn't stopped properly.
First the files are unzipped into temp, then the service is stopped and then the files are copied.
Are you sure that zip extraction step failed, or may it have been the copy step? I tested on my machine and it worked fine. I think version 2.1.2 should fix this.

(For the next time please open a new issue instead of replying to an old one, this makes it easier to keep track of different issues, thanks :) )


Reply to this email directly or view it on GitHubhttps://github.com/Pro/dkim-exchange/issues/67#issuecomment-65000291.

<!-- gh-comment-id:65001986 --> @gogglespisano commented on GitHub (Nov 30, 2014): I entered a new issue for it. The good news is my email is now verifying with the correct domain name ☺ Thanks, -Stuart From: Stefan Profanter [mailto:notifications@github.com] Sent: Sunday, November 30, 2014 1:06 PM To: Pro/dkim-exchange Cc: Stuart Wyatt Subject: Re: [dkim-exchange] sub-domain not used in header (#67) Hm, this looks like the MSExchangeTransport wasn't stopped properly. First the files are unzipped into temp, then the service is stopped and then the files are copied. Are you sure that zip extraction step failed, or may it have been the copy step? I tested on my machine and it worked fine. I think version 2.1.2 should fix this. (For the next time please open a new issue instead of replying to an old one, this makes it easier to keep track of different issues, thanks :) ) — Reply to this email directly or view it on GitHubhttps://github.com/Pro/dkim-exchange/issues/67#issuecomment-65000291.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/nuget/Src/Configuration.DkimSigner/MimeKit-4.7.1
Ed25519-SHA256
feature/dkim-verify
coverity_scan
v3.4.1.2
v3.4.2
v3.4.1.1
v3.4.1
v3.4.0
v3.3.4
v3.3.3
v3.3.2
v3.3.1
v3.2.9
v3.2.8
v3.2.7
3.2.6
v3.2.5
v3.2.4
v3.2.4-alpha
v3.2.3.1
v3.2.3
v3.2.2
v3.2.0
v3.1.0
v3.0.13
v3.0.12
v3.0.11
v3.0.10
v3.0.9
v3.0.8
v3.0.7
v3.0.6
v3.0.5
v3.0.4
v3.0.3
v3.0.2
v3.0.1
v3.0.0
v3.0.0-beta.2
v3.0.0-beta
v2.1.8
v2.1.7
v2.1.6
v2.1.5
v2.1.5-beta.2
v2.1.5-beta
v2.1.4
v2.1.3
v.2.1.2
v2.1.1
v2.1.0
v2.0.3
v2.0.2
v2.0.1
v2.0.0-beta.4
v2.0.0-rc.1
v2.0.0-beta.3
v2.0.0-beta.2
v2.0.0-beta
v2.0.0-alpha.1
v2.0.0-alpha
v1.8.3
1.8.2
v1.8.1
v1.8.0
v1.7.0
v1.6.0
v1.5.2
Labels
Clear labels   
agent

   
agent

   
bug

   
bug

   
enhancement

   
gui

   
invalid

   
need-info

   
question

   
wontfix
No labels
agent
agent
bug
bug
enhancement
gui
invalid
need-info
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/dkim-exchange-Pro#50
No description provided.