Server : nginx/1.22.1
System : Linux iZwz9daxib3w3i063fw434Z 3.10.0-1127.19.1.el7.x86_64 #1 SMP Tue Aug 25 17:23:54 UTC 2020 x86_64
User : www ( 1000)
PHP Version : 7.2.33
Disable Function : passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
Directory :  /www/wwwroot/www.jkmold.com/phpcms/libs/PHPMailer/docs/
Upload File :
Current Directory [ Writeable ] Root Directory [ Writeable ]


Current File : /www/wwwroot/www.jkmold.com/phpcms/libs/PHPMailer/docs/DomainKeys_notes.txt
CREATE DKIM KEYS and DNS Resource Record:

=========================================



To create DomainKeys Identified Mail keys, visit:

http://dkim.worxware.com/

... read the information, fill in the form, and download the ZIP file 

containing the public key, private key, DNS Resource Record and instructions

to add to your DNS Zone Record, and the PHPMailer code to enable DKIM

digital signing.



/*** PROTECT YOUR PRIVATE & PUBLIC KEYS ***/



You need to protect your DKIM private and public keys from being viewed or

accessed. Add protection to your .htaccess file as in this example:



# secure htkeyprivate file

<Files .htkeyprivate>

  order allow,deny

  deny from all

</Files>



# secure htkeypublic file

<Files .htkeypublic>

  order allow,deny

  deny from all

</Files>



(the actual .htaccess additions are in the ZIP file sent back to you from 

http://dkim.worxware.com/ 



A few notes on using DomainKey Identified Mail (DKIM):



You do not need to use PHPMailer to DKIM sign  emails IF:

- you enable DomainKey support and add the DNS resource record

- you use your outbound mail server



If you are a third-party emailer that works on behalf of domain owners to

send their emails from your own server:

- you absolutely have to DKIM sign outbound emails

- the domain owner has to add the DNS resource record to match the 

  private key, public key, selector, identity, and domain that you create

- use caution with the "selector" ... at least one "selector" will already

  exist in the DNS Zone Record of the domain at the domain owner's server

  you need to ensure that the "selector" you use is unique

Note: since the IP address will not match the domain owner's DNS Zone record

you can be certain that email providers that validate based on DomainKey will

check the domain owner's DNS Zone record for your DNS resource record. Before

sending out emails on behalf of domain owners, ensure they have entered the 

DNS resource record you provided them.



Enjoy!

Andy



PS. if you need additional information about DKIM, please see:

http://www.dkim.org/info/dkim-faq.html