So i have my Mailcow server configured to use a DKIM key and also added it correctly to the Domain (Weeks ago btw)
i just cant seem to figure out why all my emails are not having the correct DKIM key
I hope anyone can help me to solve the problem
EnglishDKIM key Errors when sending
The request is a bit generic. But i can tell you which steps I would take to debug DKIM for a start.
1) Check your rspamd logs if you see “DKIM_SIGNED(0.00){YOURDOMAIN:s=YOURDKIMSELECTOR;}” for your outbound messages.
2) Send a mail to your favorite external email service that does proper Auth Checks and adds a “Authentication-Results” Header. Check the Email Source and review if your “DKIM-Signature:” Header is present and Review the “Authentication-Results” for errors.
E.g. A wrong selector could look like this “dkim=fail header.d=YOURDOMAIN (key not found in DNS);”.
3) Don’t send to postmaster (AT) REMOTEDOMAIN. These messages do not get DKIM signed in mailcow. I believe this is due rcpt whitelisting. I stumbled over this issue recently when doing some DKIM delivery tests from mailcow.
Have something to say?
Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!
Okay Okay can you tell me how get theese logs and also could you name me an email provider wich does that please
- Edited
1) There are 2 ways to see logs from rspamd
a) Commandline
From your mailcow-dockerized folder run
docker compose logs rspamd-mailcow
This can be verbose, you can append “| grep REMOTEDOMAIN” to reduce the output
More docs on logs 
Logs - mailcow: dockerized documentation docs.mailcow.email
b) Rspam UI
On your Web Gui Section go to “System > Configuration” and then “Access > RspamUI”. If you haven’t used RspamUI, you need to set the password before first use on this page. The click the link and provide that password you should get into the RspamUI. The History Tab allows you to browse through recent emails and the filter result can be seen when using the + sign on the left.
###
As regards the Mail Provider, almost every mail provider should do that by now. If you have access to another mail account, it most likely does it, unless it’s something exotic, check the headers 
I personally use test accounts at GMAIL, MICROSOFT hosted (free hotmail and office365), YAHOO, and some others that are work related. They all do that. Although i favor GMAIL for testing.
Okay so my results are theese:
Outlook showed me this: dkim=fail (signature did not verify) and i think im able to see that my Mailserver is sending emails with the wrong key, not the key in my domain, not the key mailcow shows me when editing
Rspamd:
So your messages get signed, so far so good. This leave the issue most likely on the validation piece. The validation is based on the public key in DNS, so I would check that now.
I have user Check a DKIM Core Key
& dkimcore.org
DKIM Record Checker - DKIM - DNS Checker to check my DKIM record. Both pages check DKIM for correct syntax and try to identify if the public key could be correct as well. A full validation is not possible without the privte key, which you should keep private. DNS Checker
Let’s see if that gives us some hints on what could be wrong.
Both websites show me the following: (and yea i figured out to not censor my domain name because well, people can see it anyways)
Regarding xyz domains, they are often blocked as a whole, and perception is that spam comes from them.
Interesting read:
Problems with .xyz Domain Extension [Spam, Malware, and More] - silicon.nyc
esackbauer i know, in fact i already had been blocked by microsoft but they unblocked my server
Problem fixed itself when i restarted the WHOLE server
Interesting, but good it works now. Still a bit of mystery what caused it initally.
Yeah quite mysterious i needed to restart my dedicated server so everything restarted maybe some wierd problem wich only existed on my end or something
No one is typing