On: "1) Remove the "_" from DNS records to be consistent with A/AAAA records used with the HTTPS retrieval, and make this a bit less confusing for deployments. We did this for both MTA-STS and TLSRPT."
Having just tried to implement this, I bumped into a problem that I can't use a CNAME to an ELB for the https bit and set the TXT record in the same zone because it has the same DNS name and CNAME is special. Have I missed something, or does this mean it's not possible to use CNAMEs for hosting the policy document? If so, I think that's going to be a pretty painful blocker for a lot of people. Cheers, David On Wed, Feb 15, 2017 at 7:57 PM, Brotman, Alexander < [email protected]> wrote: > Folks, > > We uploaded new revisions for MTA-STS and TLSRPT. There are minor changes > to each: > > 1) Remove the "_" from DNS records to be consistent with A/AAAA records > used with the HTTPS retrieval, and make this a bit less confusing for > deployments. We did this for both MTA-STS and TLSRPT. > 2) Clarify language around punycode > > Please give these a review and get back to us with any comments. Thank > you. > > -- > Alex Brotman > Sr. Engineer, Anti-Abuse > Comcast > x5364 > > > _______________________________________________ > Uta mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/uta >
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
