Docs: point out that a DKIM private key file needs to be readable

author Jeremy Harris <jgh146exb@wizmail.org>

Mon, 30 Sep 2024 17:23:01 +0000 (18:23 +0100)

committer Jeremy Harris <jgh146exb@wizmail.org>

Mon, 30 Sep 2024 17:25:08 +0000 (18:25 +0100)
author Jeremy Harris <jgh146exb@wizmail.org>
Mon, 30 Sep 2024 17:23:01 +0000 (18:23 +0100)
committer Jeremy Harris <jgh146exb@wizmail.org>
Mon, 30 Sep 2024 17:25:08 +0000 (18:25 +0100)
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt

index 18f92404aea14592de28212cc804c52f6bcb33dc..f3bf5ea8ebcaa136edfc5579b877c9d937aafa1f 100644 (file)
--- a/doc/doc-docbook/spec.xfpt
+++ b/doc/doc-docbook/spec.xfpt
@@ -41904,8 +41904,9 @@ To generate keys under OpenSSL:
  openssl genrsa -out dkim_rsa.private 2048
  openssl rsa -in dkim_rsa.private -out /dev/stdout -pubout -outform PEM
  .endd
  openssl genrsa -out dkim_rsa.private 2048
  openssl rsa -in dkim_rsa.private -out /dev/stdout -pubout -outform PEM
  .endd
-The result file from the first command should be retained, and
-this option set to use it.
+The result file from the first command should be retained,
+permissions set so that Exim can read it,
+and this option set to use it.
  Take the base-64 lines from the output of the second command, concatenated,
  for the DNS TXT record.
  See section 3.6 of RFC6376 for the record specification.
  Take the base-64 lines from the output of the second command, concatenated,
  for the DNS TXT record.
  See section 3.6 of RFC6376 for the record specification.
author	Jeremy Harris <jgh146exb@wizmail.org>
	Mon, 30 Sep 2024 17:23:01 +0000 (18:23 +0100)
committer	Jeremy Harris <jgh146exb@wizmail.org>
	Mon, 30 Sep 2024 17:25:08 +0000 (18:25 +0100)