[dns-operations] TLSA records on MX
Phil Pennock
dnsop+phil at spodhuis.org
Fri Jun 7 22:38:59 UTC 2013
On 2013-06-07 at 10:02 -0700, Jeroen Massar wrote:
> Do you have a guide/howto for doing the whole setup?
>
> As it sounds quite interesting to get that up and running.
No, but one will be part of a chapter of The Exim Specification, when I
find time to get the coding work done.
Loosely: make sure you're DNSSEC-signing, read:
http://tools.ietf.org/html/draft-ietf-dane-smtp-01
http://tools.ietf.org/html/draft-ietf-dane-srv-02
and I strongly advise to limit exploration at this time to usage 2,3.
I haven't done more than briefly skim:
http://tools.ietf.org/html/draft-dukhovni-dane-ops-00
but the author is the person working on the Postfix implementation, so
is likely good.
Thanks,
-Phil
More information about the dns-operations
mailing list