unlip Add a setting to prevent clients from sending emails from the server without valid DKIM. Emails sent without valid DKIM will be rejected/blocked.
cPFence unlip Rspamd itself cannot enforce ‘no sending without DKIM’, but you can use the cPFence bulk tool cpfence --bulk-enable-dkim-cluster to ensure DKIM is enabled on all domains.
unlip cPFence Is it possible to adjust it so that it only activates on domains that are deactivated? I ran it and it replaced the one for all domains. I had to manually update it on the domains that are managing DNS externally.
unlip I think it would be possible to do this using RSPAM. It would force a valid SPF and DKIM before leaving the server. I believe this would help the IP's reputation with providers.
cPFence unlip As far as we know, this isn’t possible. You can reach out to the Rspamd support team to confirm or ask if they have a workaround for enforcing DKIM before mail leaves the server.
