ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-smtp] why are we reinventing mta-sts ?

2019-10-06 19:30:17
from [Keith Moore] [Permanent Link] 
On 10/6/19 8:10 PM, John R Levine wrote:


In article 
<aa7a9556-ad45-3891-95ab-31949c44a5ab(_at_)network-heretics(_dot_)com>,

... If an MX record with target smtps- or starttls- isn't signed
using DNSSEC, it's not clear that the client should trust the smtps- or
starttls- prefix, and that the client should drop mail that can't be
relayed that way.??...


What's wrong with MTS-STS defined in RFC 8461?
It's defined, it works, it's deployed at a lot of large mail systems.
I hope MTS-STS turns out to be sufficient.   But I've seen so many attempted solutions fail for one reason or another that I don't think it hurts to discuss potential alternatives. 

Keith



_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-smtp] why are we reinventing mta-sts ?, Claus Assmann
Next by Date:  Re: [ietf-smtp] Dombox - A Zero Spam Mail System, John C Klensin
Previous by Thread:  Re: [ietf-smtp] why are we reinventing mta-sts ?, John Levine
Next by Thread:  Re: [ietf-smtp] MTA-STS scale (was: why are we reinventing mta-sts?), Viktor Dukhovni
Indexes:  [Date] [Thread] [Top] [All Lists]