> On Feb 15, 2016, at 8:40 AM, Phillip Hallam-Baker <[email protected]>
> wrote:
>
> TLSA deployment is negligible, less than 1000 domains and
> 7-13% of those are wrong.
Not surprising. For HTTPS, if nobody is checking, why should they be right!
With SMTP, out of 11k tested domains ~30 (0.3%) are wrong. TLSA records are
only
kept right if there's an operational impact when they're wrong.
The error rate for SMTP will drop as more sending systems enable outbound
checks.
--
Viktor.
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
