Arnt Gulbrandsen <arnt(_at_)gulbrandsen(_dot_)priv(_dot_)no> wrote:
RFC 6186
While I greatly applaud that document in every detail, I do wonder... why do
clients ask the user whether to use TLS? whether to use C=D? whether to
perform plaintext or SASL authentication?
I've been wondering that for at least seven years.
http://fanf.livejournal.com/39428.html
I'm currently trying to write draft-fanf-dane-mua which will update RFC
6186 to specify how it is affected by DNSSEC and how to use TLSA records.
It will use TLSA records to indicate that STARTTLS is supported on the
cleartext ports, and encourage MUAs to use that for autoconfiguration.
Tony.
--
f.anthony.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
South German Bight, Humber, Thames, Dover: Southwesterly 6 to gale 8,
occasionally severe gale 9 in Thames and Dover. Moderate or rough. Squally
showers. Moderate.
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp