From b9565c95598563917e3c0d365ac0448515fc98c3 Mon Sep 17 00:00:00 2001
From: System administrator
Date: Sat, 28 Sep 2019 12:41:18 +0200
Subject: acl: re-enable dkim signature check for relayed messages

---
 conf.d/020_acl.conf | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/conf.d/020_acl.conf b/conf.d/020_acl.conf
index c0ec4f3..59417b3 100644
--- a/conf.d/020_acl.conf
+++ b/conf.d/020_acl.conf
@@ -77,10 +77,7 @@ acl_mua_data:
 ############
 
 acl_mta_connect:
-  # Accept all messages from trusted hosts and relays.
-  # Also disable DKIM signature check as mailing list servers may alter messages.
   accept   hosts         = +trusted_relay_hosts
-           control       = dkim_disable_verify
 
   # Deny messages from hosts known to be bad.
   drop     dnslists      = sbl-xbl.spamhaus.org : bl.spamcop.net
@@ -93,10 +90,7 @@ acl_mta_mail:
   require  acl           = acl_check_mail_introduction
            message       = Courtesy protocol violation: $acl_m_msg
 
-  # Accept all messages from trusted hosts and relays.
-  # Also disable DKIM signature check as mailing list servers may alter messages.
   accept   hosts         = +trusted_relay_hosts
-           control       = dkim_disable_verify
 
   # Accept if the host is an authorized sender according to the SPF policy for the domain (SPF pass).
   # TODO: switch to builtin exim SPF support
-- 
cgit v1.2.3