-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
In message <9e5c4dd8-7acf-8da7-4d4e-9337ef6e6101(_at_)pscs(_dot_)co(_dot_)uk>,
Paul Smith
<paul(_at_)pscs(_dot_)co(_dot_)uk> writes
A simple TXT record saying "This domain's MTAs support STARTTLS (and,
possibly, optionally, this is the certificate fingerprint)" would seem
useful and not need anything else, and would protect against STARTTLS
downgrade for any sender willing to support it.
doesn't RFC 8461 provide what you wish for ?
- --
richard Richard Clayton
Those who would give up essential Liberty, to purchase a little temporary
Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755
-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1
iQA/AwUBXDSgxTu8z1Kouez7EQKcZgCg4KASq4mxUC9fjFMpFtkpcpc4e60AnjnX
msVphIabOk6qCw/82FSxstUt
=sHmk
-----END PGP SIGNATURE-----
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp