Skip to main content

Important Records for Mail Domain Name

When you have a domain, for example, yourdomain.com, you can create your email address at that domain name like yourname@yourdomain.com. Several domain name records which I consider to be important for mail domain are:

1. MX Record
Of course, it assigns a domain where the mail exchange server is located. For example:

Name Priority Type Data
yourdomain.com 10 MX mx.yourdomain.com

2. SPF Record
SPF is a spam and phishing scam fighting method that uses DNS SPF records to define which hosts are permitted to send e-mails for a domain. See http://www.openspf.org. For example:

Name Type Data
yourdomain.com TXT "v=spf1 mx mx:yourdomain.com -all"

This configuration means emails sent from all servers defined in the MX record of yourdomain.com are permitted by the sender organization

3. DKIM Record
DKIM allows an organization to take responsibility for a message in a way that can be verified by a recipient. DKIM defines a domain-level digital signature authentication framework for email through the use of public-key cryptography and using the domain name service as its key server technology (more info).  There are some steps to sign DKIM signature on the mail server using amavisd (in latest Ubuntu its name is amavisd-new).

1) Check existing keys.
$ amavisd-new showkeys

2) Generate new key for new domain.
$ amavisd-new genrsa /var/lib/dkim/yournewdomain.com.pem 1024
$ chown amavis:amavis /var/lib/dkim/yournewdomain.com.pem
$ chmod 0400 /var/lib/dkim/yournewdomain.com.pem

3) Setup amavisd configuration. In Ubuntu, it's located at /etc/amavis/conf.d/50-user.

Find:
dkim_key('yourdomain.com', "dkim", "/var/lib/dkim/yourdomain.com.pem");

Add:
dkim_key('yournewdomain.com', "dkim", "/var/lib/dkim/yournewdomain.com.pem");

Find:
@dkim_signature_options_bysender_maps = ( {
    ...
    "yourdomain.com"  => { d => "yourdomain.com", a => 'rsa-sha256', ttl => 10*24*3600 },
    ...
});

Add:
@dkim_signature_options_bysender_maps = ( {
    ...
    "yourdomain.com"  => { d => "yourdomain.com", a => 'rsa-sha256', ttl => 10*24*3600 },
    "yournewdomain.com"  => { d => "yournewdomain.com", a => 'rsa-sha256', ttl => 10*24*3600 },
    ...
});

Actually, you can also use an existing key and don't need to generate a new key by mapping the new domain to use an existing key.
    "yournewdomain.com"  => { d => "yourdomain.com", a => 'rsa-sha256', ttl => 10*24*3600 },

Or, you can also assign a key for all domains.
dkim_key('*', "dkim", "/var/lib/dkim/yourdomain.com.pem");
Then restart amavisd.

4) Recheck existing keys.
$ amavisd-new showkeys
Copy the value part v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDYArsr2BKbdhv9efugBy... and remove any quotes and line breaks.

5) Update DNS record for new DKIM information. (Domain providers can take a while for updating its records)

Name Type Data
dkim._domainkey.yourdomain.com TXT v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBi...

6) Validate DNS record using amavisd. If it returns pass, it works.
$ amavisd-new testkeys

7) Verify using other tools.
$ dig -t txt dkim._domainkey.yourdomain.com
$ nslookup -type=txt dkim._domainkey.yourdomain.com


Comments

Popular posts from this blog

Kerusakan pada Motherboard

1. Sering terjadi hang memory tidak cocok --- ganti memory ada virus di harddisk --- scan harddisk over clock --- seting kembali clock prosesor ada bad sector di harddisk --- partisi harddisk dengan benar 2. Pembacaan data menjadi lambat memori tidak cukup --- tambah memori harddisk penuh atau ada virus --- kurangi isi harddisk, scan harddisk, atau ganti hardisk 3. CMOS failure baterai habis --- ganti baterai CMOS seting BIOS berubah --- seting kembali BIOS 4. Tidak bisa booting cache memory rusak --- disable eksternal cache memory di BIOS memori tidak cocok --- ganti memori boot sector pada harddisk rusak --- masukkan operating system baru ada bad sector pada trek awal harddisk --- partisi harddisk 5. Suara bip panjang berkali-kali memori rusak --- periksa kedudukan memori memori tidak cocok --- ganti memori memori tidak masuk slot dengan sempurna --- periksa kembali kedudukan memori 6. Suara bip bagus tetapi tidak ada tampilan / bip dua kali VGA card

Rangkaian Sensor Infrared dengan Photo Dioda

Keunggulan photodioda dibandingkan LDR adalah photodioda lebih tidak rentan terhadap noise karena hanya menerima sinar infrared, sedangkan LDR menerima seluruh cahaya yang ada termasuk infrared. Rangkaian yang akan kita gunakan adalah seperti gambar di bawah ini. Pada saat intensitas Infrared yang diterima Photodiode besar maka tahanan Photodiode menjadi kecil, sedangkan jika intensitas Infrared yang diterima Photodiode kecil maka tahanan yang dimiliki photodiode besar. Jika  tahanan photodiode kecil  maka tegangan  V- akan kecil . Misal tahanan photodiode mengecil menjadi 10kOhm. Maka dengan teorema pembagi tegangan: V- = Rrx/(Rrx + R2) x Vcc V- = 10 / (10+10) x Vcc V- = (1/2) x 5 Volt V- = 2.5 Volt Sedangkan jika  tahanan photodiode besar  maka tegangan  V- akan besar  (mendekati nilai Vcc). Misal tahanan photodiode menjadi 150kOhm. Maka dengan teorema pembagi tegangan: V- = Rrx/(Rrx + R2) x Vcc V- = 150 / (150+10) x Vcc V- = (150/160) x 5

Itachi Uchiha

The Real Hero of Konoha

Refund Tiket Kereta Api

Pada Desember 2013 saya telah berencana untuk pergi ke Kebumen dari Bandung menggunakan kereta api. Namun karena ada tugas yang mendesak maka saya membatalkan rencana tersebut. Tiket saya beli secara online. Pada waktu itu peraturan pembatalan pembelian tiket adalah 1 jam sebelum keberangkatan. Saya mengajukan pembatalan pada satu hari sebelum keberangkatan. Langkah-langkah pengajuan refund adalah seperti berikut. Jika Anda membeli tiket secara online, cetaklah tiket Anda terlebih dahulu di stasiun. Untuk stasiun Bandung lokasi pencetakan tiket di dekat loket Costumer Service. Pencetakan dilakukan sendiri (self service) menggunakan perangkat komputer yang disediakan dengan memasukkan kode booking pada aplikasi yang ada. Setelah itu Anda dapat bertanya pada petugas di mana loket untuk pengajuan refund. Untuk stasiun Bandung loket untuk pengajuan refund saat itu berada di loket terakhir yaitu loket 9.  Setelah menunjukkan tiket maka kita diminta mengisi formulir pengajuan pembatalan.

Setting Up Next.js Project With ESLint, Typescript, and AirBnB Configuration

If we initiate a Next.js project using the  create-next-app tool, our project will be included with ESLint configuration that we can apply using yarn run lint . By default, the tool installs eslint-config-next and extends next/core-web-vitals in the ESLint configuration. The Next.js configuration has been integrated with linting rules for React and several other libraries and tools. yarn create next-app --typescript For additional configuration such as AirBnB, it is also possible. First, we need to install the peer dependencies of eslint-config-airbnb . We also add support for Typescript using eslint-config-airbnb-typescript . yarn add --dev eslint-config-airbnb eslint-plugin-import eslint-plugin-jsx-a11y eslint-plugin-react eslint-plugin-react-hooks yarn add --dev eslint-config-airbnb-typescript @typescript-eslint/eslint-plugin @typescript-eslint/parser After that, we can update the .eslintrc.json file for the new configuration. { "extends": [ "airb

Raspberry Pi Bluetooth Connection

Raspberry Pi 3 provides a built-in Bluetooth module. The latest Raspbian has been bundled with tools for enabling Bluetooth connection. The Bluetooth icon will be shown up on the top right corner of the desktop. It's a tool to discover available Bluetooth devices and connect Pi with Bluetooth devices. It is easy to connect any Bluetooth-enabled electronic device with Pi. But, sometimes Pi will fail to connect, especially for Bluetooth device that has no standardized services. From a terminal, we can use the  bluetoothctl tool to scan and connect with a Bluetooth device. You should make sure that the BlueZ protocol stack has been installed by running $ apt-get install bluez Run bluetoothctl to enter the tool command window Turn the power on by running power on (Optional) You can set AutoEnable=true in /etc/bluetooth/main.conf if you want to make the Bluetooth auto power-on after reboot. Run devices to see which devices have been paired Run scan on if your desired d