On Wed, 6 Mar 2024, Michael W. Lucas via mailop wrote:
Hi, First time playing with MTA-STS. I have a test domain, ratoperatedvehicle.com. The mxtoolbox check says everything exists: https://mxtoolbox.com/SuperTool.aspx?action=mta-sts%3aratoperatedvehicle.com&run=toolpage My reports from Google say they can't find it, however. { "organization-name": "Google Inc.", "date-range": { "start-datetime": "2024-03-05T00:00:00Z", "end-datetime": "2024-03-05T23:59:59Z" }, "contact-info": "smtp-tls-report...@google.com", "report-id": "2024-03-05T00:00:00Z_ratoperatedvehicle.com", "policies": [ { "policy": { "policy-type": "no-policy-found", "policy-domain": "ratoperatedvehicle.com" }, "summary": { "total-successful-session-count": 1, "total-failure-session-count": 0 } } ] } Any suggestions on what I messed up? Or is this a disguised policy error? $ dig _mta-sts.ratoperatedvehicle.com @8.8.8.8 txt +short "v=STSv1; id=2024030501;" https://mta-sts.ratoperatedvehicle.com/.well-known/mta-sts.txt has: version: STSv1 mode: testing mx: mail.ratoperatedvehicle.com mx: www.mwl.io max_age: 43200
Apparently "Google will only process policies with a max_age higher than 86000 seconds. Policies with a max_age of 86000 or lower will be ignored and a daily no-policy-found report will be sent if TLS-RPT is enabled."
(link: https://www.uriports.com/blog/mta-sts-explained/)So if you want Google to consider your policy as "valid" you shoud make max_age 86400 or higher. ¯\_(ツ)_/¯
Cheers, Bernardo
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
