make sure the generated key is readable by the daemon and that it isn't readable by anybody; also indicate the presence of the milter by default

milter-dkim/milter-dkim-genkey.sh

@@ -31,7 +31,8 @@ fi
 #   key generation   
 echo "++ generating $keysize bit RSA key $keyfile"
 if [ ! -f $keyfile ]; then
-    @l_prefix@/bin/openssl genrsa -out $keyfile $keysize
+    (umask 027; @l_prefix@/bin/openssl genrsa -out $keyfile $keysize)
+    chown @l_rusr@:@l_musr@ $keyfile; chmod 640 $keyfile
 else
     echo "** FILE ALREADY EXISTS, NOT OVERRIDDEN, KEPT AS IS"
 fi

milter-dkim/milter-dkim.spec

@@ -33,7 +33,7 @@ Class:        EVAL
 Group:        Mail
 License:      Open Source
 Version:      0.5.2
-Release:      20061230
+Release:      20061231
 
 #   package options
 %option       with_fsl  yes

milter-dkim/rc.milter-dkim

@@ -8,7 +8,7 @@
     milter_dkim_selector="main"
     milter_dkim_domain="example.com"
     milter_dkim_keyfile="@l_prefix@/etc/milter-dkim/main.example.com.pem"
-    milter_dkim_flags="-c relaxed"
+    milter_dkim_flags="-c relaxed -h"
     milter_dkim_prolog="true"
     milter_dkim_epilog="true"
     milter_dkim_numfiles="10"