I'm trying to sign emails with DKIM using PHPMailer Class and i can't get it to work.
When i see the headers in my emails on gmail, i find that the class is successfully injecting DKIM in the email header but gmail doesn't even care.
The question is that i've viewed the headers of linkedIn emails and i found out that they are using 2 DKIM headers, DomainKey-Signature
& DKIM-Signature
.
What's the difference? and is that why Gmail doesn't verify my emails? & do you recommend any alternative & robust classes to sign emails with domain keys on php?
Thanks
DKIM is one such email verification system that uses a hash value (private key) to sign email information that is matched against the public key lodged in the sender's DNS. Emails digitally signed with a DKIM signature bear a high level of protection against any alteration by a malicious third party.
The DKIM signature is generated by the MTA (Mail Transfer Agent). It creates a unique string of characters called Hash Value. This hash value is stored in the listed domain. After receiving the email, the receiver can verify the DKIM signature using the public key registered in the DNS.
Understanding DKIM. DomainKeys Identified Mail, or DKIM, is a technical standard that helps protect email senders and recipients from spam, spoofing, and phishing. It is a form of email authentication that allows an organization to claim responsibility for a message in a way that can be validated by the recipient.
A DKIM signature helps mailbox providers verify you as the sender while preventing phishing attacks known as email spoofing. Imagine signing an important letter with invisible ink, which makes it clear the message came from you and no one else. That's essentially what DKIM does.
Both use Public/Private keys to digitally sign emails. Both use a text file in the sender's DNS server that contain the public key that can be used by the recipient to verify the signature.
Domain Keys was the first version.
DKIM is the updated version.
The difference is how Domain Keys and DKIM sign the messages, and build the header.
Email recipients may implement either of them (or both). The only thing you can do, is sign with both classes, if you want to cover all bases.
Do you want the technical details on the differences between DomainKeys vs DKIM?
--Dave
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With