ADSPDiscard             yes
ADSPNoSuchDomain        yes
AllowSHA1Only           no
AlwaysAddARHeader       no
AutoRestart             yes
AutoRestartRate         10/1h
BaseDirectory           /var/run/dkim-milter
Canonicalization        simple/simple
#Domain                  domain.tld			#add all your domains here and separate them with comma if not using keylist option
SubDomains              Yes
ExternalIgnoreList      /etc/mail/dkim/trusted-hosts	#Identifies   a   file  of  "external"  hosts  which may send mail through the server as one of  the  signing  domains without credentials as such
InternalHosts           /etc/mail/dkim/trusted-hosts	#Identifies  a file of  internal  hosts  whose  mail should be signed rather  than verified.
KeyList                 /etc/mail/dkim/keylist		#Gives the location of  a  file  listing  rules  for signing with multiple keys.
LocalADSP               /etc/mail/dkim/local-adsp-rules
Mode                    sv
MTA                     MSA
On-Default              reject
On-BadSignature         reject
On-DNSError             tempfail
On-InternalError        accept
On-NoSignature          accept
On-Security             discard
PidFile                 /var/run/dkim-milter/dkim-milter.pid
#QueryCache              yes    #parameter not known ?!
RemoveOldSignatures     yes
Selector                default
SignatureAlgorithm      rsa-sha1
Socket                  inet:8891@localhost
Syslog                  yes
SyslogSuccess           yes
TemporaryDirectory      /tmp
UMask                   022
UserID                  domainkeys:domainkeys
X-Header                yes