On Sun, Jun 08, 2014, Jim Fenton wrote:
Before we get too far down the road with how to accomplish this, I'd
like to ask about the "beneficial" part: What behavior we would like to
occur with respect to certificate validation?
That's local policy. For example, in sendmail (and most likely
other MTAs) you can require certain restrictions on connections,
this would be just another one, e.g.,
TLS_Clt:example.com PERM+VERIFY:112
requires successful cert verification from hosts within the
example.com domain.
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp