Re: [mailop] [ext] Re: mimecast.com contact

Viktor Dukhovni via mailop Wed, 17 Dec 2025 22:11:36 -0800

On Thu, Dec 18, 2025 at 11:58:18AM +1100, Viktor Dukhovni via mailop wrote:


> Well, actually, the client can reasonably expect a validatable chain in the
> specific case of charite.de, because an MTA-STS policy is actually in
> place (presumably since ~2019).
> 
>     $ hsdig -t txt _mta-sts.gmail.com
>     ; NOERROR qr rd ra
>     _mta-sts.gmail.com. IN TXT "v=STSv1; id=20190429T010101;"

Wrong DNS query/response pasted, the correct one is:

    $ hsdig -t txt _mta-sts.charite.de
    ; NOERROR qr rd ra
    _mta-sts.charite.de. IN TXT "v=STSv1; id=2018110801"

The rest of the upthread post still applies.

-- 
    Viktor.  🇺🇦 Слава Україні!
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop

Re: [mailop] [ext] Re: mimecast.com contact

Reply via email to