I have about 80 domains pointed at my mail server. I control the DNS for
all of them but I can't see any reasonable way to make MTA-STS work.
I can set up the TXT records easily enough, but it looks like I need an
HTTPS server with 80 names and 80 certficates, or one certificate with 80
alt names. That doesn't scale very well.
Adding to the excitement, every domain has its own name for the mail
server, e.g., for foo.com the mail server name is mx1.foo.com, all
pointing at the same IP address. (This is not unusual; Tucows hostedemail
does the same thing with much longer names.) So I'll need 80 names on the
mail server certificates, too.
Am I missing anything here?
Regards,
John Levine, [email protected], Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly
PS: On the domains where I have access to the registrars, they're DNSSEC
signed and there are _25._tcp.<mx> TLSA records.
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
