Comments on draft-ietf-dane-smtp-01 "domain and its SMTP server host names (i.e. the MX recods), and"
=> MX Records "If a server has TLSA records whose DNSSEC validation status is "secure", whether they are usable or not, the client MUST use TLS to connect to the server and validate the certificate according to [ I-D.ietf-dane-srv] section 3." I might have missed something in another draft, but which clients does this MUST apply to? Is there a MUST use DNSsec somewhere else? Or does this only apply IF dnssec is used? /O _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
