Re: [mailop] Ubuntu Noble/24.04 - TLS 1.0, 1.1 and DTLS 1.0 are forcefully disabled

On 2024-03-13 00:09, Andrew C Aitchison via mailop wrote: Given that the advice for SMTP is often to allow tls 1.0 and 1.1, rather than have it revert to unencrypted, this will is something to watch out for. TLS 1.0/1.1 have been deprecated in March 2021 (RFC 8996). Systems that are unable to

Re: [mailop] Filter out emoji from email adresses

Am 07.03.24 um 13:30 schrieb Sebastian Nielsen via mailop: Exactly, but when the mail client tries to display the crap in the name field, it causes it to crash. So, it's an RCE (Remote Crash Exploit, hehe). Seriously: If external data crashes your software, you have a huge security problem.

Re: [mailop] Gmail.com SPF false negatives?

Am 27.02.24 um 23:30 schrieb Rob Nagler via mailop: $ dig +short txt nagler.me "v=spf1 a mx ip4:139.177.203.52 include:_spf.google.com -all" A TTL of just 300 seconds is way too short IMHO. If anything happens to your DNS you just have five minutes

Re: [mailop] Is forwarding to Gmail basically dead?

Am 08.02.24 um 03:51 schrieb Jarland Donnell via mailop: Aside from the question in the subject, because I see this brought up a lot on the mailing list in relation to email forwarding, would passing ARC signatures even matter when the problem is that Google is increasingly rejecting forwarded

Re: [mailop] DMARC on srs forwarding domains?

Am 02.02.24 um 16:08 schrieb Mark E. Jeftovic via mailop: We're having a bit of a theological debate internally on whether to implement DMARC on our SRS forwarder domains. Skip SRS and implement ARC for forwarded e-mails. This should solve all these problems.

Re: [mailop] ECDSA DKIM validation?

Am 21.12.23 um 10:36 schrieb John Levine via mailop: They're a little faster to create and check than RSA, but the difference isn't enough to matter. They are also very small in comparison to RSA keys. IMHO that's a great argument when you distribute public keys via DNS.

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

Am 03.08.22 um 13:34 schrieb Sidsel Jensen via mailop: We were having a discussion on the possibility to disable TLS 1.0 and 1.1 for MTA to MTA communication, and based on the numbers we've seen so far, it doesn't look that far fetched. What's the common consensus in the mail community about

Re: [mailop] DKIM+DMARC at t-online.de (Deutsche Telekom's ISP branche)

Am 06.04.21 um 11:36 schrieb Florian.Kunkel--- via mailop: unsigned messages, unaligned or messages failing validation otherwise, will be rejected while in SMTP session. Just to be clear: you are rejecting all messages without DKIM signature so that every mail for @t-online has to be DKIM

Re: [mailop] Delivery issues with gmx recipients

Am 12.03.21 um 10:24 schrieb Arne Allisat via mailop: Please report your ip’s and an example error message to our postmaster team https://postmaster.gmx.net/en/contact I've done that and received a canned response with no help or context. This is very