# because it is often the identity key used by reputation systems and thus
# somewhat security sensitive.
OversignHeaders From
+
+## default (none)
+##
+## Specifies a file from which trust anchor data should be read when doing
+## DNS queries and applying the DNSSEC protocol. See the Unbound documentation
+## at http://unbound.net for the expected format of this file.
+
+TrustAnchorFile /usr/share/dns/root.key
+
+
+# Path must match postfix main.cf
+Socket local:/var/spool/postfix/opendkim/sock
+PidFile /var/spool/postfix/opendkim/opendkim.pid