CINXE.COM

DomainKeys Public/Private Key-pair Generation

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head><script type="text/javascript" src="https://web-static.archive.org/_static/js/bundle-playback.js?v=7YQSqjSh" charset="utf-8"></script> <script type="text/javascript" src="https://web-static.archive.org/_static/js/wombat.js?v=txqj7nKC" charset="utf-8"></script> <script>window.RufflePlayer=window.RufflePlayer||{};window.RufflePlayer.config={"autoplay":"on","unmuteOverlay":"hidden"};</script> <script type="text/javascript" src="https://web-static.archive.org/_static/js/ruffle/ruffle.js"></script> <script type="text/javascript"> __wm.init("http://web.archive.org/web"); __wm.wombat("https://domainkeys.sourceforge.net/keygen.html","20230324171203","http://web.archive.org/","web","https://web-static.archive.org/_static/", "1679677923"); </script> <link rel="stylesheet" type="text/css" href="https://web-static.archive.org/_static/css/banner-styles.css?v=p7PEIJWi" /> <link rel="stylesheet" type="text/css" href="https://web-static.archive.org/_static/css/iconochive.css?v=3PDvdIFv" /> <!-- End Wayback Rewrite JS Include --> <title>DomainKeys Public/Private Key-pair Generation</title> <script src="http://web.archive.org/web/20230324171203js_/http://us.js1.yimg.com/us.yimg.com/lib/pim/c3/ylib_dom.js" type="text/javascript"></script> <script src="http://web.archive.org/web/20230324171203js_/http://us.js1.yimg.com/us.yimg.com/lib/pim/css2/pim_css.js" type="text/javascript"></script> <script language="javascript" type="text/javascript" src="http://web.archive.org/web/20230324171203js_/http://us.js1.yimg.com/us.yimg.com/lib/common/ylib_dom.js"></script> </head> <body topmargin="4" leftmargin="4" style="background-color: rgb(228, 236, 246);" vlink="#0000ff" link="#0000ff"> <div align="center"> <table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr class="bgd"> <td colspan="4" height="5"><spacer type="block" width="5" height="5"></spacer><!--<a href="http://libbey.org/decretalviral.php"> Not shown</a>--> </tr> <tr valign="top"> <td class="bgd" width="5"><spacer type="block" width="5" height="1"></spacer></td> <td class="bgd" width="165"> <table border="0" cellpadding="2" cellspacing="0" style="width: 100%;"> <tr> <td colspan="2" height="4"><spacer type="block" width="1" height="4"></spacer></td> </tr> <tr class="frmt"> <td nowrap width="1%" align="left" valign="top"> <img src="http://web.archive.org/web/20230324171203im_/http://us.i1.yimg.com/us.yimg.com/i/sr/ar.gif" height="9" width="8" alt="" vspace="3"> </td> <td nowrap><b>Other Information</b></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">&nbsp;-</td> <td><a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/news/?group_id=107680">News</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/docman/?group_id=107680">Documentation</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">&nbsp;-</td> <td><a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/projects/domainkeys/">SourceForge Project Info</a> </td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://groups.yahoo.com/group/domainkeys-interop/">DomainKeys Implementors mailing list</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://domainkeysforum.org/">DomainKeys Message Board</a></td> </tr> </table> <p align="center">&nbsp; </p> <table border="0" cellpadding="2" cellspacing="0" style="width: 100%;"> <tr class="frmt"> <td nowrap width="1%" align="left" valign="top"> <img src="http://web.archive.org/web/20230324171203im_/http://us.i1.yimg.com/us.yimg.com/i/sr/ar.gif" height="9" width="8" alt="" vspace="3"> </td> <td nowrap><b>MTAs using DomainKeys</b></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/projects/dk-milter">Sendmail DomainKey Milter</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://qmail.org/qmail-1.03-dk-0.53.patch">Qmail</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td>MS <a href="http://web.archive.org/web/20230324171203/http://mmmservices.web.cern.ch/mmmservices/Antispam/DomainKeys.aspx">Exchange 2003</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://killa.net/infosec/domainkeys/">qpsmtpd</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">&nbsp;-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.port25.com/domainkeys/">Port 25's</a> PowerMTA</td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://eproxy.etype.net/ru/YdkPlugin">Etype.net</a>'s acSMTP </td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td>ActivSoftware's <a href="http://web.archive.org/web/20230324171203/http://www.xmmailserver.com/">XMServer</a> </td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td>OmniTI <a href="http://web.archive.org/web/20230324171203/http://www.omniti.com/solutions/ecelerity.php">Ecelerity</a> </td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.strongmail.com/resources/tech_support.html">StrongMail</a> </td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td>DRCC <a href="http://web.archive.org/web/20230324171203/http://www.drcc.com/nsj">no.Spam.java</a> <!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.exim.org/">Exim 4.51</a> <!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td>Alt-N Technologies <a href="http://web.archive.org/web/20230324171203/http://www.altn.com/MDaemon/">MDaemon MTA</a><!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://jason.long.name/dkfilter/">Postfix</a><!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.borderware.com/products/mxtreme/email_security/anti_phishing.php">BorderWare MXtreme</a><!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.niversoft.com/products/cgscripts/domkeys">Communigate Pro</a><!--/td--> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.ironport.com/uk/products/ironport_x1000.html">IronPort</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.icewarp.com/">Merak Mail</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.lsoft.com/products/listserv_145.asp">L-Soft Listserv</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.mailtraq.com/domainkeys">Mailtraq</a></td> </tr> <tr class="flo"> <td style="white-space: nowrap; text-align: right; vertical-align: top;">-</td> <td><a href="http://web.archive.org/web/20230324171203/http://www.socketlabs.com/">SocketLabs Hurricane MTA Server</a></td> </tr> </tr></table> <p align="center"><a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/"><img src="http://web.archive.org/web/20230324171203im_/http://sflogo.sourceforge.net/sflogo.php?group_id=107680&amp;type=1" width="88" height="31" border="0" alt="SourceForge Logo"></a></p> </td> <td class="bgd" width="5"><spacer type="block" width="1" height="1"></spacer><br><img src="http://web.archive.org/web/20230324171203im_/http://us.i1.yimg.com/us.yimg.com/i/spacer.gif" width="5"></td> <td bgcolor="white" width="80%"> <table cellpadding="0" cellspacing="0" border="0"> <tr> <td bgcolor="#9bbad6"><img src="http://web.archive.org/web/20230324171203im_/http://us.i1.yimg.com/us.yimg.com/i/us/pim/el/rdul1.gif" width="5" height="5"></td> </tr> </table> <div style="padding: 8px;"> <table border="0" cellpadding="2" cellspacing="0" width="98%" name="titletable"> <tr> <td><strong><font size="+1">DomainKeys Public/Private Key-pair Generation</font></strong> </td> <td align="right"><small>Last Updated: July 9, 2005</small></td> </tr> </table> <table border="0" cellpadding="2" cellspacing="0" width="98%" name="contenttable"> <tr class="frmt"> <td colspan="2"><br> <strong>Command Line Tools Available</strong></td> </tr> <tr valign="top" bgcolor="#eeeeee" class="msgold"> <td align="center">&nbsp;</td> <td> Perhaps the easiest way to generate DomainKeys public/private key-pairs is to use the <a href="http://web.archive.org/web/20230324171203/http://sourceforge.net/project/showfiles.php?group_id=107680&amp;package_id=148885">CPAN command line tools available</a>. The tool can create a key-pair, and format them for DNS publication. </td></tr> <tr class="frmt"> <td colspan="2"><br> <strong>Generating a private-key for the MTA</strong></td> </tr> <tr valign="top" bgcolor="#eeeeee" class="msgold"> <td align="center">&nbsp;</td> <td> <p>For ease of explanation, the openssl command is used throughout this document to describe the mechanism by which keys are managed. </p> <p>One way to generate a 768 bit private-key suitable for DomainKeys, is to use openssl like this:</p> <p>$ openssl genrsa -out rsa.private 768</p> <p> Which results in the file rsa.private containing the key information<br> similar to this:</p> <p>-----BEGIN RSA PRIVATE KEY-----<br> MIIByQIBAAJhAKJ2lzDLZ8XlVambQfMXn3LRGKOD5o6lMIgulclWjZwP56LRqdg5<br> ZX15bhc/GsvW8xW/R5Sh1NnkJNyL/cqY1a+GzzL47t7EXzVc+nRLWT1kwTvFNGIo<br> AUsFUq+J6+OprwIDAQABAmBOX0UaLdWWusYzNol++nNZ0RLAtr1/LKMX3tk1MkLH<br> +Ug13EzB2RZjjDOWlUOY98yxW9/hX05Uc9V5MPo+q2Lzg8wBtyRLqlORd7pfxYCn<br> Kapi2RPMcR1CxEJdXOkLCFECMQDTO0fzuShRvL8q0m5sitIHlLA/L+0+r9KaSRM/<br> 3WQrmUpV+fAC3C31XGjhHv2EuAkCMQDE5U2nP2ZWVlSbxOKBqX724amoL7rrkUew<br> ti9TEjfaBndGKF2yYF7/+g53ZowRkfcCME/xOJr58VN17pejSl1T8Icj88wGNHCs<br> FDWGAH4EKNwDSMnfLMG4WMBqd9rzYpkvGQIwLhAHDq2CX4hq2tZAt1zT2yYH7tTb<br> weiHAQxeHe0RK+x/UuZ2pRhuoSv63mwbMLEZAjAP2vy6Yn+f9SKw2mKuj1zLjEhG<br> 6ppw+nKD50ncnPoP322UMxVNG4Eah0GYJ4DLP0U=<br> -----END RSA PRIVATE KEY-----<br> </p> <p>This private key will be inserted into your DomainKeys-enabled MTA. Your MTA or plugin should provide instructions on how to do so. </p> </td> </tr> <tr class="frmt"> <td colspan="2"><br> <strong>Generating the public-key for the DNS selector record</strong></td> </tr> <tr valign="top" bgcolor="#eeeeee" class="msgold"> <td align="center">&nbsp;</td> <td><p>To extract the public-key component from the private-key, use openssl like this:</p> <p> $ openssl rsa -in rsa.private -out rsa.public -pubout -outform PEM</p> <p> Which results in the file rsa.public containing the key information similar to this:</p> <p> -----BEGIN PUBLIC KEY-----<br> MHwwDQYJKoZIhvcNAQEBBQADawAwaAJhAKJ2lzDLZ8XlVambQfMXn3LRGKOD5o6l<br> MIgulclWjZwP56LRqdg5ZX15bhc/GsvW8xW/R5Sh1NnkJNyL/cqY1a+GzzL47t7E<br> XzVc+nRLWT1kwTvFNGIoAUsFUq+J6+OprwIDAQAB<br> -----END PUBLIC KEY-----</p> <p>This public-key data is placed in the selector's DNS record as the value of p. Thus, a selector's record may look like:</p> k=rsa; t=y; p=MHwwDQYJKoZIhvcNAQEBBQADawAwaAJhAKJ2lzDLZ8XlVambQfMXn3LRGKOD5o6l MIgulclWjZwP56LRqdg5ZX15bhc/GsvW8xW/R5Sh1NnkJNyL/cqY1a+GzzL47t7E XzVc+nRLWT1kwTvFNGIoAUsFUq+J6+OprwIDAQAB; </td> </tr> </table> </div></td> </tr> <tr valign="top"> <td colspan="3" class="bgd"><spacer type="block" width="5" height="5"></spacer></td> <td bgcolor="white" height="5"> <table cellpadding="0" cellspacing="0" border="0"> <tr bgcolor="#9bbad6" class="bgd"> <td width="5" height="5"><img src="http://web.archive.org/web/20230324171203im_/http://us.i1.yimg.com/us.yimg.com/i/us/pim/el/rddl1.gif" width="5" height="5" alt=""></td> </tr> </table></td> </tr> </table> </div> <center><small><br>Copyright &copy; 1994-2006 <a href="http://web.archive.org/web/20230324171203/http://www.yahoo.com/" target="_top">Yahoo!</a> Inc. All rights reserved. </small></center> </body> </html> <!-- FILE ARCHIVED ON 17:12:03 Mar 24, 2023 AND RETRIEVED FROM THE INTERNET ARCHIVE ON 09:40:53 Feb 18, 2025. JAVASCRIPT APPENDED BY WAYBACK MACHINE, COPYRIGHT INTERNET ARCHIVE. ALL OTHER CONTENT MAY ALSO BE PROTECTED BY COPYRIGHT (17 U.S.C. SECTION 108(a)(3)). --> <!-- playback timings (ms): captures_list: 0.859 exclusion.robots: 0.048 exclusion.robots.policy: 0.029 esindex: 0.017 cdx.remote: 35.327 LoadShardBlock: 257.82 (3) PetaboxLoader3.datanode: 224.282 (5) PetaboxLoader3.resolve: 232.796 (2) load_resource: 258.258 loaddict: 71.754 -->

Pages: 1 2 3 4 5 6 7 8 9 10