• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue DKIM public key longer than 255 chars

I

Ingesi

New Pleskian
Server operating system version
Ubuntu 22.04.3 LTS
Plesk version and microupdate number
18.0.57 Update #5
Hi all

I've migrated a domain from a server (Ubuntu 22.04.3 LTS) with Plesk Obsidian 18.0.57 to a new server (Ubuntu 22.04.3 LTS) with the same version of Plesk Obsidian 18.0.57
On the old server plesk was creating DKIM keys with default length (2048); the DKIM public key was long about 200 chars and all it was working good
On the new server with the same key length (2048) the generated record with the public key is long about 400 chars; when I try to copy the key on the DNS zone editor provided by the domain name maintainer the key is truncated at 255 chars, and this is normal because DNS records should be shorter then 255 chars
I tried to modify the DKIM key length in the panel.ini to 1024, then I've disabled andre-enabled DKIM for the domain to generate new keys, but the public keys was always longer than 255 chars
How can I have plesk generating shorter keys as in the old server?
If you need more details please let me know
Kind regards
Alessandro Barisone
 
2048 bit keys cannot be stored in a single DNS record. Instead a second record must be used. Have you checked whether a second record exists in your DNS?
 
The control panel of the maintainer (OVH) allows to paste keys longer than 255 chars; but when I do a nslookup I got the entire key with a space after the 255 char. If you want to check, try nslookup -q=txt default._domainkey.ingesi.it
I opened a ticket and they replied that domain records should be shorter than 255 chars and they can't handle an out of standard record
How can I split correctly they key in two different records?
Anyway, I'm 100% sure that on the previous server I'm using 2048 bit keys and the keys are shorter than 255 chars
If you want you can do nslookup -q=txt default._domainkey.ingesi.it server7.ingesi.it , Bind on Plesk replies with a key shorter, while in panel.ini the key length is set to the defaut value
Thank you
Kind regards
Alessandro Barisone
 
Ingesi said:
Anyway, I'm 100% sure that on the previous server I'm using 2048 bit keys and the keys are shorter than 255 chars
Click to expand...
The 2048 bit keys may never have been active. For example if you only changed the configuration but did not recreate keys, the existing keys would not have been changed.
 
You must log in or register to reply here.

Similar threads

ilogus
Resolved Incoming email DKIM issue
Replies
4
Views
487
ilogus
ilogus
TorbHo
Resolved After migrating to a new Plesk server: DKIM records end with ;;
Replies
2
Views
316
TorbHo
TorbHo
J
Issue Need advice on upgrading Plesk Obsidian Version 18.0.44 to latest version to have DKIM 2048 key length
Replies
7
Views
2K
AgustinLorenzo
A
C
Resolved DKIM is valid but signature fails
Replies
6
Views
6K
cmartinez127
C
J
Resolved PUM error persists....
Replies
13
Views
903
Jeroentje
J
Back
Top