... If an MX record with target smtps- or starttls- isn't signed
using DNSSEC, it's not clear that the client should trust the smtps- or
starttls- prefix, and that the client should drop mail that can't be
relayed that way.??...
What's wrong with MTS-STS defined in RFC 8461?
It's defined, it works, it's deployed at a lot of large mail systems.
John Levine, johnl(_at_)taugh(_dot_)com, Primary Perpetrator of "The Internet for
Please consider the environment before reading this e-mail. https://jl.ly
ietf-smtp mailing list