On 01/08/2019 03:18 PM, Viktor Dukhovni wrote:
DANE for SMTP as defined in RFC7672 as strictly stronger than MTA-STS. For clients that implement the DANE spec, TLS and authentication are mandatory with receiving MX hosts that publish TLSA records, and unlike MTA-STS the signalling is downgrade-resistant even on first contact.You're misremembering or never looked closely at DANE for SMTP.
Thank you for the clarification. I'll go back and re-read DANE /for/ SMTP. -- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
