DKIM signature fail

Copper Contributor

Hi everyone,

 

When sending a mail on a Microsoft mailbox, the DKIM signature verification fails :

dkim=fail (body hash did not verify)

 

I do not have the problem with others webmail like GMail : 

dkim=pass header.i=@laretailtech.com header.s=nasmtp header.b=1ZRr1FRV;

 

The failure seems to be because of a change on the mail body when the mail is received by Microsoft servers.

 

Does anybody knows how to fix this ?

Is it some configuration on the mailbox side ? 

 

Here is an exemple of the headers received on a Microsoft mailbox :

 

Received: from MRZP264MB1927.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:9::18) by
 MRXP264MB0056.FRAP264.PROD.OUTLOOK.COM with HTTPS; Tue, 19 Jul 2022 10:10:37
 +0000
Received: from AS9PR06CA0182.eurprd06.prod.outlook.com (2603:10a6:20b:45d::16)
 by MRZP264MB1927.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:9::18) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5438.14; Tue, 19 Jul
 2022 10:10:34 +0000
Received: from VE1EUR01FT003.eop-EUR01.prod.protection.outlook.com
 (2603:10a6:20b:45d:cafe::4d) by AS9PR06CA0182.outlook.office365.com
 (2603:10a6:20b:45d::16) with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5438.12 via Frontend
 Transport; Tue, 19 Jul 2022 10:10:34 +0000
Authentication-Results: spf=pass (sender IP is 91.109.120.29)
 smtp.mailfrom=netanswer.fr; dkim=fail (body hash did not verify)
 header.d=laretailtech.com;dmarc=fail action=none
 header.from=laretailtech.com;compauth=fail reason=001
Received-SPF: Pass (protection.outlook.com: domain of netanswer.fr designates
 91.109.120.29 as permitted sender) receiver=protection.outlook.com;
 client-ip=91.109.120.29; helo=smtp2.netanswer.fr; pr=C
Received: from smtp2.netanswer.fr (91.109.120.29) by
 VE1EUR01FT003.mail.protection.outlook.com (10.152.2.118) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.5438.12 via Frontend Transport; Tue, 19 Jul 2022 10:10:34 +0000
Received: from netanswer-front2.ovh.bearstech.com (netanswer-front2.ovh.bearstech.com [51.91.139.53])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits))
	(No client certificate requested)
	by smtp.netanswer.fr (Postfix) with ESMTPS id B362B2A1549
	for <email address removed for privacy reasons>; Tue, 19 Jul 2022 12:10:33 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=laretailtech.com;
	s=nasmtp; t=1658225433;
	bh=hB+DYdT7lROUpt+yh0pUrr7PnPfQen4YtzqCs2PBL0A=;
	h=To:Subject:Date:From:List-Unsubscribe:From;
	b=lUD0WQj6Rs4SVTocugmounHYdumtW1N7xJN5PJ8x1IvtkXIcG6RJYLfR8ZbrAVYLB
	 FPmTfW5GPzBqdzQsuKlVDB6HZuq533G+TIp8ogIH8tSQsK3r08ruWRCuTrekGVecMk
	 7gny5HU0Jrs5SFYRmPxc5Y2X6wNGqjKtYWxzfWwtcjFxRIGGAeowlB0wnmPL9/fZ7t
	 ZC3LzlV0UhIqX7gAmPtSPKHkACfTZkK+eh2/GAOc/LQ+/shPYv+nPlLrUBK22TiUf8
	 8H972TBpgJOcRGReylr5Zcw0D50qclSVDWY3cLOsUjW0Nt8/hDir5NWy5QjRs27X3e
	 VBzJGBkuEaPOw==
Received: by netanswer-front2.ovh.bearstech.com (Postfix, from userid 1185)
	id 995D17016E; Tue, 19 Jul 2022 12:10:33 +0200 (CEST)
To: email address removed for privacy reasons
Subject: Test NA - J-1 : on se retrouve demain !
Date: Tue, 19 Jul 2022 12:10:33 +0200
From: Julia de La Retail Tech <email address removed for privacy reasons>
Message-ID: <email address removed for privacy reasons>
X-Mailer: PHPMailer 6.6.3 (https://github.com/PHPMailer/PHPMailer)
List-Unsubscribe: =?us-ascii?Q?<mailto:email address removed for privacy reasons=3Fsubject=3DUn?=
 =?us-ascii?Q?subscribe>,?=
MIME-Version: 1.0
Content-Type: multipart/alternative;
 boundary="b1_tLqvkaIEhpGSIXCkX1wJfjCGC6cm6NOsmpQShHvnE"
Content-Transfer-Encoding: 8bit
Return-Path: email address removed for privacy reasons
X-MS-Exchange-Organization-ExpirationStartTime: 19 Jul 2022 10:10:34.1596
 (UTC)
X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit
X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000
X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit
X-MS-Exchange-Organization-Network-Message-Id:
 6eb04776-00ae-4597-a747-08da696eeb50
X-EOPAttributedMessage: 0
X-EOPTenantAttributedMessage: 8101cb43-67b3-4ff5-a213-ada88c4ee354:0
X-MS-Exchange-Organization-MessageDirectionality: Incoming
X-MS-PublicTrafficType: Email
X-MS-Exchange-Organization-AuthSource:
 VE1EUR01FT003.eop-EUR01.prod.protection.outlook.com
X-MS-Exchange-Organization-AuthAs: Anonymous
X-MS-Office365-Filtering-Correlation-Id: 6eb04776-00ae-4597-a747-08da696eeb50
X-MS-TrafficTypeDiagnostic: MRZP264MB1927:EE_
X-MS-Exchange-Organization-SCL: 1
X-Microsoft-Antispam: BCL:0;
X-Forefront-Antispam-Report:
 CIP:91.109.120.29;CTRY:FR;LANG:fr;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:smtp2.netanswer.fr;PTR:smtp2.netanswer.fr;CAT:NONE;SFS:(13230016)(356005)(7596003)(19627405001)(7636003)(58800400005)(83170400001)(166002)(66574015)(42186006)(42882007)(6916009)(6266002)(336012)(26005)(8676002)(5660300002)(1096003)(39280500004);DIR:INB;
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Jul 2022 10:10:34.0815
 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 6eb04776-00ae-4597-a747-08da696eeb50
X-MS-Exchange-CrossTenant-Id: 8101cb43-67b3-4ff5-a213-ada88c4ee354
X-MS-Exchange-CrossTenant-AuthSource:
 VE1EUR01FT003.eop-EUR01.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MRZP264MB1927
X-MS-Exchange-Transport-EndToEndLatency: 00:00:03.0763231
X-MS-Exchange-Processed-By-BccFoldering: 15.20.5438.020
X-Microsoft-Antispam-Mailbox-Delivery:
	ucf:0;jmr:0;auth:0;dest:I;ENG:(910001)(944506458)(944626604)(920097)(930097);
X-Microsoft-Antispam-Message-Info:
	=?us-ascii?Q?DXfvy7hQGjQCBxYd0qEXm0eVjLT09ijAZLAsbxFBPwbjvzDYz04XFhB2gfvq?=
 =?us-ascii?Q?t04IBOFfRz8y5nOpquwmM/PJMkU5/y48YYqYGEdBScol+RcZboCYf4xRX1yn?=
 =?us-ascii?Q?isipxySCzRW9la0wo5ijWjm77sWF5eTVT2987s2eS5/fXD4YMgbVSFh2SLHF?=
 =?us-ascii?Q?v+5Vf3dcJgoK1qWvPqgm+HC7+nnq66LfLN7G9BAMlRLS0ea23YmaPuBuo4G5?=
 =?us-ascii?Q?XbV+aeeHE+0zKrSYN5HV9OJl70sLstWRIg5SN8E82wm7Oy9FiR56ul947Dib?=
 =?us-ascii?Q?YgIQ2/4mpOlN5+dUZJQeb67fQ0DUN48jYpils2/DRsEIXXV9Sw8JDlAtIR2q?=
 =?us-ascii?Q?+OU++sgKSY7mL/Aqicb/Fr0+5CmcoGCkR7xHILVGGJCAgAsgaNYnMkFXkI7b?=
 =?us-ascii?Q?Rj8nmmDAJ3koXctnHfntnEN3umxkO6qyc8fDrPoW/wwKe2v9iMQuNGc+WS2y?=
 =?us-ascii?Q?yHr9+kDIetsHoRoemY4tP5oGA2Qw+Vv2HWl5GosBNwqx35l0+TpcFsKc69aU?=
 =?us-ascii?Q?Sj26oCt0nYIqd8iNRBiTyUGGDfFZIbvRMBwqqffND+vMBQbMIb8PC5wQHFSt?=
 =?us-ascii?Q?uF6LJjy1OkNC8bgKq3XfY7WLKGFDkv1biLbf6FrAoBAxUhNLLdXG//0eSlga?=
 =?us-ascii?Q?1hwVvdWFEKaVH6VawNhOZTxzHFZkQ4wX6+QDlvV9y2RQSY+07VFqIsGokHRL?=
 =?us-ascii?Q?pKHiX0PcvMOv+QODggO7cRLiqogRUEAhaldQq1oxNnEHGiFsQnLekYZRVdHS?=
 =?us-ascii?Q?zbRaT0F17eq8FvjUu6tsrFGl+r/6WxRj008r4iNX5w/fPEB1b0I6o1XhtM9w?=
 =?us-ascii?Q?1coU43vwGs4iOBbJScBjhYWKsmekCGVMMK6AMQM5mBqA+QXeeD8wUqOKsEYe?=
 =?us-ascii?Q?fiPAKb5tybOdGTdYk9ap1DEPaROqGappvMI8jCQdpNaaAxdNl641iW2gp/Dj?=
 =?us-ascii?Q?x+W9aACm3YzT9Le20T0Ra6sVoLD21m0x2/WZmkeSe30wg03v8RPTNmTVbAFi?=
 =?us-ascii?Q?jx5ZklLEVREgwtIhqoxrRq3LRcXFNUtodMb5dhVpvB8v4fEo/ItS4mgB9miS?=
 =?us-ascii?Q?32O8w34sHam1vcrjXKvYTYbn9C2BA5IyitFCVO/BAvt3WUock/e/MwxTauss?=
 =?us-ascii?Q?F3vOYVKGenkDqv2prDsNAV1T2U+d8OUK+geH2nyYzqemnXpykjsQzE3YQLxj?=
 =?us-ascii?Q?f3Kn5ucWY5jKlnZ+s9O3STqc9rNjkq0DqKuFyLiHrBbe6Tz7CPIN2dUin86m?=
 =?us-ascii?Q?qZk4yT3VBli4gFP3br8g8PHWAyX6p4ElHE2CaV/gjkoREGSjvDNuzL4XvRCs?=
 =?us-ascii?Q?6fmd1JjGPAhUQIYOQXVcgFAgJdD3GJInIfVQYbnz3DPbs5MiUalVWfjgIscu?=
 =?us-ascii?Q?/Mp9d2Tc80fKzYRmHDguUHNmmhFLC7xVGcx962BRvckBjMd1HEVMCHzH5Nxu?=
 =?us-ascii?Q?Dn+WCctxCK+KAJ79p1nvq3pdggkM1AUGuoiUxj9ks304KYxT2/G97KhVWENh?=
 =?us-ascii?Q?MsF5KRyzI/9YV1mtr/m+KFI07enj01la4bPwbPoplpIt6ESNObZPLwq+bOAW?=
 =?us-ascii?Q?Tc+Vzv7w6CM4YLPhWrGzGNjmIWhyHuqubBG5h80EskEyqhXJWgLM34/Ni0u6?=
 =?us-ascii?Q?vrmjnzoK3NNMPm2fpvZXdg70mM2oJ7QmrX9vuXFpKEfghDpbi8ktZ4BU8/RN?=
 =?us-ascii?Q?B+1nEoRgr4vHVJzDyryvHnSseKdEYp6QVVrlbkH/McgE7xLL+RmBfGpR66Oj?=
 =?us-ascii?Q?0ifuXbJGeRncANy/lNU+7cH2g73JVVYkY35fnsFakrVznsDFd0YiXJXrT7nU?=
 =?us-ascii?Q?BQK107714XHv/YX1yK37s1kXJDrJrcnSnGBUjJDhxTbs/+m9sBbWPHAvm4qn?=
 =?us-ascii?Q?ykQHl+obVi353er5bVJOJfxKFZ1pwPeSLp/1AdVTA1M01zQEr1ElBJwdOq5I?=
 =?us-ascii?Q?Mhx8YOIA1kKKb2z9Lk8D5s1IiVD/ohTTyN+YHkZt/3AxibWZNsYFKR0mFL7P?=
 =?us-ascii?Q?028bkl3cnRilZDReCFKtCAQ1cE575vlK7bQyFkmyyxL4YEPZDsBGkdohNFo4?=
 =?us-ascii?Q?9a+ORNVjIY4aHToIz6HRu6g4ebxcA47ZXYq6f0RA4lfAl+8zlNRda3bcoMxL?=
 =?us-ascii?Q?O6X1oYDJ+6680dwxeCUV4WK4Xxck9Yqt/HS7B+dOJk8yUN544xHYQ7DsGOwQ?=
 =?us-ascii?Q?DgSgVMnNZQbbynap+sg+WJnlOVBvtuiE9UdEQUB2Xex1EWZWCTs2E+vCAiXO?=
 =?us-ascii?Q?+Xv7fVbHH/A5lIsUAMXW?=

 

 

Here the headers for the same mail received on Gmail : 

 

Delivered-To: email address removed for privacy reasons
Received: by 2002:a4a:d84e:0:0:0:0:0 with SMTP id g14csp2818224oov;
Tue, 19 Jul 2022 03:03:31 -0700 (PDT)
X-Google-Smtp-Source: AGRyM1usgCfxbaxs5jx+B2ULh3Vt3Wj1smi5y2uqTZdpndxPic51MQl6kgSlP8yy9G1OE+NAOxCr
X-Received: by 2002:adf:e7c9:0:b0:21d:8716:e08d with SMTP id e9-20020adfe7c9000000b0021d8716e08dmr26224865wrn.328.1658225010843;
Tue, 19 Jul 2022 03:03:30 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1658225010; cv=none;
d=google.com; s=arc-20160816;
b=qffw6yG1u2IE4gNonECDwprqu+TqKmg6qA/UcgKzxENKtnvXtLqLR5ih4jNcwU4qi1
bTEm43Yt2tC++YUmPy7TIYV0sDXZjORisVKXUNzfcMx+/ETtYQX1eFsxoCznCdoK0ODb
57WTHMxkXZIZWNA/FZFel2osX6JEzNBu6eMj85nBqEP6TB/rydyMfu6iVXk+fDypAwcf
cNxTy5d+iXHuwQkntxqIvWTBcT6I86pAoYL+wI8nv20Ve7a2KUCplhTxsTcLtK80UaE9
+NVhIeFg4JE5gsF0/Hw5i0AbjpceRLKb3m2srpLvG0QW6cLxebhdQn/qJb0Qnkp5rMzW
FioQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
h=content-transfer-encoding:mime-version:list-unsubscribe:message-id
:from:date:subject:to:dkim-signature:dkim-signature;
bh=CYsSrenU6NnA7Mz4eDIPhct9tEhrKKot4LPIYPdepSc=;
b=da+o7D9hvUFbTo4pXi7+nL9WiWb2fJn5TDf+1PyYVU42SFveefVIHUFpB8DF/Y+iA6
W43l+KbHEVrei1Y+V6DZA6as4qMawlmgC7/uzBOK6LwqR7z3av5ixUqxXlKrOCJgj/ML
66uzaXfU8EpMdnaE3MoJ8gpAgFc9psMsiRulBBiXq7w5jYRd6t8nq98sdlvg+ihlLJtK
ec9L4KfZbY0wf+YfB3KLYtWcbJsoRx+tM2FK6kHq3ZdkZc/eQNuJjeEdTjmyYvvnf4dy
sdsR4D/LU9qDzms/hCxvUJoUOI4LyK/QQG1WU3Xgio47tueAaRt0gRvf6Mzv25AJcqX3
2ehQ==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@laretailtech.com header.s=nasmtp header.b=1ZRr1FRV;
dkim=pass header.i=@laretailtech.com header.s=nasmtp header.b=1ZRr1FRV;
spf=pass (google.com: domain of email address removed for privacy reasons designates 91.109.120.29 as permitted sender) smtp.mailfrom=email address removed for privacy reasons;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=laretailtech.com
Return-Path: <email address removed for privacy reasons>
Received: from smtp2.netanswer.fr (smtp2.netanswer.fr. [91.109.120.29])
by mx.google.com with ESMTPS id az5-20020adfe185000000b0021e3caf972fsi1215403wrb.106.2022.07.19.03.03.30
for <email address removed for privacy reasons>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Tue, 19 Jul 2022 03:03:30 -0700 (PDT)
Received-SPF: pass (google.com: domain of email address removed for privacy reasons designates 91.109.120.29 as permitted sender) client-ip=91.109.120.29;
Authentication-Results: mx.google.com;
dkim=pass header.i=@laretailtech.com header.s=nasmtp header.b=1ZRr1FRV;
dkim=pass header.i=@laretailtech.com header.s=nasmtp header.b=1ZRr1FRV;
spf=pass (google.com: domain of email address removed for privacy reasons designates 91.109.120.29 as permitted sender) smtp.mailfrom=email address removed for privacy reasons;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=laretailtech.com
Received: from namx0.netanswer.fr (inamx0.netanswer.fr [192.168.201.10]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ismtp.netanswer.fr (Postfix) with ESMTPS id 8BF1C2A0D34 for <email address removed for privacy reasons>; Tue, 19 Jul 2022 12:03:30 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=laretailtech.com; s=nasmtp; t=1658225010; bh=CYsSrenU6NnA7Mz4eDIPhct9tEhrKKot4LPIYPdepSc=; h=To:Subject:Date:From:List-Unsubscribe:From; b=1ZRr1FRVCkip5+Aq8/OIQyVFnbSO4B3WywuM8n5mIKhCPAppaiq7AI/iLkzO0bkg/
GdpbLcQJqbv6ia2X8uHliWNEpW3BZD0U0S8mFJHD8pJqG71Id48cfFUUns1XoSEv11
ql/wTwf68pCYo/gfM3ff2PJLryRm/8/2GB+XFh+Iv35d0WH9wbbOqJDZwbN+Ta986o
EthO6X5XoQeA0R4pddgpdJ/2PAtXGOTE+v9Iji3JHVd/KsttSdV6PWNKoW++gLNRU/
w10tnZ1yOprZRnPTng94RmKrqjWehLh4pnAXIjrgjY/M9GNSruSLZqWGeGBDxiaAtp
e9OdUh/b4X2PA==
Received: from netanswer-front2.ovh.bearstech.com (netanswer-front2.ovh.bearstech.com [51.91.139.53]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits)) (No client certificate requested) by mx0.netanswer.fr (Postfix) with ESMTPS id 7AD42121607 for <email address removed for privacy reasons>; Tue, 19 Jul 2022 12:03:30 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=laretailtech.com; s=nasmtp; t=1658225010; bh=CYsSrenU6NnA7Mz4eDIPhct9tEhrKKot4LPIYPdepSc=; h=To:Subject:Date:From:List-Unsubscribe:From; b=1ZRr1FRVCkip5+Aq8/OIQyVFnbSO4B3WywuM8n5mIKhCPAppaiq7AI/iLkzO0bkg/
GdpbLcQJqbv6ia2X8uHliWNEpW3BZD0U0S8mFJHD8pJqG71Id48cfFUUns1XoSEv11
ql/wTwf68pCYo/gfM3ff2PJLryRm/8/2GB+XFh+Iv35d0WH9wbbOqJDZwbN+Ta986o
EthO6X5XoQeA0R4pddgpdJ/2PAtXGOTE+v9Iji3JHVd/KsttSdV6PWNKoW++gLNRU/
w10tnZ1yOprZRnPTng94RmKrqjWehLh4pnAXIjrgjY/M9GNSruSLZqWGeGBDxiaAtp
e9OdUh/b4X2PA==
Received: by netanswer-front2.ovh.bearstech.com (Postfix, from userid 1185) id 5D5FBDB70F; Tue, 19 Jul 2022 12:03:30 +0200 (CEST)
To: email address removed for privacy reasons
Subject: Test NA - J-1 : on se retrouve demain !
Date: Tue, 19 Jul 2022 12:03:30 +0200
From: Julia de La Retail Tech <email address removed for privacy reasons>
Message-ID: <email address removed for privacy reasons>
X-Mailer: PHPMailer 6.6.3 (https://github.com/PHPMailer/PHPMailer)
List-Unsubscribe: <mailto:email address removed for privacy reasons?subject=Unsubscribe>,
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="b1_Pxj9RGuv8FHzu1ULa29mtvu8vpCz0tPPP05rlg2EXjQ"
Content-Transfer-Encoding: 8bit

 

 

Thanks

3 Replies
I found this : https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/anti-spam-message-header...

reason 001: The message failed implicit authentication (compauth=fail). This means that the sending domain did not have email authentication records published, or if they did, they had a weaker failure policy (SPF soft fail or neutral, DMARC policy of p=none).

The domain sending the mail has no policy setted for DMARC : "v=DMARC1; p=none; rua=xxxx@xxxx"
Is this the cause ?
How can i fix this ? There is no problem on others webmail.

Thx
Hi. Did you ever get this fixed? Having the same issue, been working with Microsoft support but they aren't getting the issue.

@TouLo1190 This error occurs when sending an email encoded in ISO-8859-1 despite having the right headers.

When sending it in UTF-8 I don't have the problem.

I guess Microsoft don't handle ISO encoding correctly.

 

I hope it will solve your problem.