Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread Matt Corallo via mailop
> On Apr 28, 2022, at 18:58, Michael Ströder via mailop > wrote: > > On 4/29/22 00:27, Matt Corallo wrote: >>> On 4/28/22 2:34 PM, Michael Ströder via mailop wrote: >>> I'm really wondering why people have so strong objections against MTA-STS. >>> Actually it's pretty easy to setup and it's

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread Michael Ströder via mailop
On 4/29/22 00:27, Matt Corallo wrote: On 4/28/22 2:34 PM, Michael Ströder via mailop wrote: On 4/28/22 05:40, Matt Corallo via mailop wrote: AFAIK, the *only* shop that enforces the rube-goldberg machine that is MTA-STS that doesn't also enforce TLSA/DANE is Google. I'm really wondering why p

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread Matt Corallo via mailop
On 4/28/22 2:34 PM, Michael Ströder via mailop wrote: On 4/28/22 05:40, Matt Corallo via mailop wrote: AFAIK, the *only* shop that enforces the rube-goldberg machine that is MTA-STS that doesn't also enforce TLSA/DANE is Google. I'm really wondering why people have so strong objections again

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread John Levine via mailop
It appears that Michael Ströder via mailop said: >> And skipping it avoids the pain of setting up a number of steps and, >> for some reason, introducing an HTTP server into your mail-receiving >> stack?! >Is that simple HTTP server serving a tiny static file is really such a >big deal? Personally

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread Michael Ströder via mailop
On 4/28/22 05:40, Matt Corallo via mailop wrote: AFAIK, the *only* shop that enforces the rube-goldberg machine that is MTA-STS that doesn't also enforce TLSA/DANE is Google. I'm really wondering why people have so strong objections against MTA-STS. Actually it's pretty easy to setup and it's

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-28 Thread Michael Ströder via mailop
On 4/28/22 23:34, Michael Ströder wrote: On 4/28/22 05:40, Matt Corallo via mailop wrote: And skipping it avoids the pain of setting up a number of steps and, for some reason, introducing an HTTP server into your mail-receiving stack?! Is that simple HTTP server serving a tiny static file is rea

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-27 Thread P Vixie via mailop
+1. ⁣Get BlueMail for Android ​ On Apr 27, 2022, 20:46, at 20:46, Matt Corallo via mailop wrote: >Not to flame but...why bother? > >At this point TLSA/DANE is enforced on mail coming from a number of the >Big Players, and most open >source mail stacks by default (well, some you have to opt in t

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-27 Thread Matt Corallo via mailop
Not to flame but...why bother? At this point TLSA/DANE is enforced on mail coming from a number of the Big Players, and most open source mail stacks by default (well, some you have to opt in to indicate your DNSSEC resolver is behaving correctly). AFAIK, the *only* shop that enforces the rube

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-27 Thread Jesse Hathaway via mailop
On Tue, Apr 26, 2022 at 6:18 PM John Levine wrote: > They're not that rare. Microsoft and Comcast also send them, along with a > few smaller places. Thanks John, I'll try sending some email from those domains to see If I can trigger a report. ___ mail

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Byung-Hee HWANG via mailop
> Google might not be sending inter-domain reports > since your hosted there. Maybe True. So Jesse is good with "jesse+someth...@mbuki-mvuki.org" instead of "postmas...@mbuki-mvuki.org". And this is mine:

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Tobias Fiebig via mailop
: [mailop] Troubleshooting MTA-STS reports On Tue, Apr 26, 2022 at 4:08 PM Eric Tykwinski wrote: > Everything looks fine to me, have you tried sending an email to a another > google account. > They are the one company I know sends MTA-STS reports, others sadly don’t. Thanks for checking,

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread John Levine via mailop
It appears that Jesse Hathaway via mailop said: >On Tue, Apr 26, 2022 at 4:08 PM Eric Tykwinski wrote: >> Everything looks fine to me, have you tried sending an email to a another >> google account. >> They are the one company I know sends MTA-STS reports, others sadly don’t. > >Thanks for check

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Jesse Hathaway via mailop
On Tue, Apr 26, 2022 at 4:08 PM Eric Tykwinski wrote: > Everything looks fine to me, have you tried sending an email to a another > google account. > They are the one company I know sends MTA-STS reports, others sadly don’t. Thanks for checking, I didn't realize they were so rare. > My guess is

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Jesse Hathaway via mailop
On Tue, Apr 26, 2022 at 3:48 PM Eric Tykwinski wrote: > You need a place to send the emails to: > _smtp._tls.virtcolo.com. TXT Default v=TLSRPTv1; > rua=mailto:postmas...@virtcolo.com Thanks Eric, I forgot to include the TLSRPT piece, this is what I currently have: $ dig +short txt _smtp._tls.

Re: [mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Eric Tykwinski via mailop
Jesse, Everything looks fine to me, have you tried sending an email to a another google account. They are the one company I know sends MTA-STS reports, others sadly don’t. My guess is that Google might not be sending inter-domain reports since your hosted there. Doesn’t make sense to me, but I’

[mailop] Troubleshooting MTA-STS reports

2022-04-26 Thread Jesse Hathaway via mailop
Hello mailopers, I am trying to setup MTA-STS for my domain, I thought I had everything configured correctly, in testing mode, but I never receive any reports via TLSRPT. If anyone has any advice on how to troubleshoot, that would be greatly appreciated. Yours kindly, Jesse Hathaway My current co