From 5bff673cedc3185fe68e6a59574ec5c94578f6ec Mon Sep 17 00:00:00 2001
From: Vasek Sraier <git@vakabus.cz>
Date: Tue, 6 Aug 2019 16:17:18 +0200
Subject: [PATCH] OpenDKIM canonicalization changed to relaxed for mail headers

Because Mailman reformats headers it breaks DKIM signatures. SPF also does
not apply in mailing lists. This together causes DMARC to fail and mark the
email as invalid. This fixes DKIM signatures for Mailman-based mailing lists
and makes sure DMARC test is passed.
---
 setup/dkim.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/dkim.sh b/setup/dkim.sh
index dc7e51e2..5bd32370 100755
--- a/setup/dkim.sh
+++ b/setup/dkim.sh
@@ -31,6 +31,7 @@ if grep -q "ExternalIgnoreList" /etc/opendkim.conf; then
 else
 	# Add various configuration options to the end of `opendkim.conf`.
 	cat >> /etc/opendkim.conf << EOF;
+Canonicalization		relaxed/simple
 MinimumKeyBits          1024
 ExternalIgnoreList      refile:/etc/opendkim/TrustedHosts
 InternalHosts           refile:/etc/opendkim/TrustedHosts