Better to use DANE instead?
-
-
-
The RFC also mentions that MTA-STS is only a solution when you can't deploy DNSSEC, at the cost of malicious downgrade attacks!?... So how is MTA-STS still a thing nowadays?pic.twitter.com/cl8QHxXgz1
- 2 more replies
New conversation -
-
-
That's just stupid. DNS is more reliable. And we have mail only domains too without running any website.And when ur website is under attack it also kills ur mail .... Interesting
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I think you've misread the RFC. Emails will not be delayed when the policy cannot be retrieved. See chapter 3.3 (HTTPS Policy Fetching). https://tools.ietf.org/html/rfc8461#page-10 …pic.twitter.com/pOmuwohdSc
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.