Appends the domain name (see -d below) to the label in the generated
TXT record, followed by a trailing period. By default it is assumed the
domain name is implicit from the context of the zone file, and is therefore
not included in the output.
Specifies the size of the key, in
bits, to be generated. The default is 1024 which is the value recommended by
the DKIM specification.
domain which will use this key for signing. Currently only used in a comment in
the TXT record file. The default is "example.com".
Instructs the tool to change to the named
directory prior to creating files. By default the current directory is used.
Specifies a list of hash
algorithms which can be used with this key. By default all hash algorithms are allowed.
Print a help message and exit.
note text in the key record. By default, no such text is included.
Restricts the key for use in e-mail signing only. The default is to allow
the key to be used for any service.
selector, or name, of the key pair generated. The default is "default".
Disallows subdomain signing by this key. By default the key record will be
generated such that verifiers are told subdomain signing is permitted. Note
that for backward compatibility reasons,
-S means the same as
Indicates the generated key record should be tagged such that verifiers are
aware DKIM is in test at the signing domain.
Increase verbose output.
|-V||(--version) Print version number and exit.|
Requires that the openssl(8) binary be installed and in the executing shells search path.
This man page covers the version of opendkim-genkey that shipped with version 2.10.3 of OpenDKIM.
Copyright (c) 2007, 2008 Sendmail, Inc. and its suppliers. All rights reserved.
Copyright (c) 2009, 2011-2013, The Trusted Domain Project. All rights reserved.
RFC6376 - DomainKeys Identified Mail
|-->||OPENDKIM-GENKEY (8)||The Trusted Domain Project|