Cloudron Forum

@foliovision Cloudron should create the DKIM records if you're using the DO API for your domains. Cloudron does not delete existing records so if you add something in manually, rest assured it won't get wiped by Cloudron.

https://docs.cloudron.io/email/#dkim

BTW, if you go to your Cloudron dashboard --> Email --> Status --> and click on "Redo DNS Setup", that should add in the required records. It should be listed as a TXT record in DO's DNS.

Example:

TXT cloudron._domainkey "v=DKIM1; t=s; p=TIDfKL7GCS...

@jdaviescoates right, unfortunately, it was not prioritized/implemented.

@girish thanks for the support. Some mails arrive in spam. I will check DKIM, SPF, DMARC, PTR records. but that's my problem 😉

@murgero I didn't say it wouldn't be accessible; it would, just through my proxies, that make sure to remove any information, that would help in disclosure.

You also miss an option with Intranets.

@murgero re-read, my response remains the same, sorry.

You know the way security scanners (or script-kiddies) works, it's to scan the network (Internet), get hosts and they software; if there is zero-day on CloudRon or other not disclosed vulnerability, apply it across the hosts.
Having DNS records showing that there is CloudRon here means you don't even need to scan for the ports, which just simplify things.

Hope that helps to understand my response here.

@girish said in Change to the DKIM record hostname in recent version, caused by new feature or from using NO-IP domain provider?:

If it was random, I was afraid there is still a possibility that they can conflict across servers

Great point - that makes sense. Thanks Girish.

Side note: I think it'd still be great for the OCD in some of us to be able to regenerate the DKIM record on demand so it not only follows the new hostname pattern in Cloudron but also generates a new key if desired too.