jeantil commented on code in PR #2697:
URL: https://github.com/apache/james-project/pull/2697#discussion_r2024493017
##########
docs/modules/servers/partials/architecture/implemented-standards.adoc:
##########
@@ -37,6 +37,7 @@ This page details standards implemented by the {server-name}.
- link:https://datatracker.ietf.org/doc/rfc6710/[RFC-6710] SMTP Extension for
Message Transfer Priorities
- link:https://datatracker.ietf.org/doc/rfc8689/[RFC-8689] SMTP Require TLS
Option
- link:https://datatracker.ietf.org/doc/html/rfc1893[RFC-1893] Enhanced Mail
System Status Codes
+- link:https://datatracker.ietf.org/doc/html/rfc8461[RFC-8461] SMTP MTA Strict
Transport Security (MTA-STS)
Review Comment:
hmm my understanding is that this PR only covers the enforcement part of the
MTA-STS rfc as a receiver of emails.
it does not cover the sending side (RemoteDeliveryMailet) which should :
- fetch the policy record from DNS
- try to connect to the remote host and start a TLS/SSL session
- apply the policy (for example refuse to send to hosts that don't have a
TLS/SSL capability)
isn't it a bit misleading to state that james implements the standard when
the implementation is partial ? (not sure what the track record is here)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscr...@james.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscr...@james.apache.org
For additional commands, e-mail: notifications-h...@james.apache.org
