On Sun, 23 Aug 2015, Patrik Fältström wrote:
What I think I see in the draft is that "DANE and SMTP" is either "on" or "off", and I want more shades of gray.
Well yes. Because you either authenticate or fail to authenticate and refuse to deliver. We cannot decide whether or not to deliver in shades of grey. So we have: - unsigned domain -> deliver without authentication, allow any TLS credential - signed domain with unsined mx target -> deliver without authentication, allow any TLS credential - signed domain with signed mx target -> deliver only if authentication succeeded. You seem to want something like: - unsigned domain with signed mx target -> deliver if authentication succeeds - despite possible spoofed MX record What is the result of the last one? "Verified TLS to potential rogue server" ? I don't think we would call that verified. Paul _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
