Package: wnpp Severity: wishlist * Package name : postfix-tlspol Version : 1.8.7 Upstream Contact: DragonWork * URL : https://github.com/Zuplu/postfix-tlspol * License : MIT Programming Lang: Go Description : Lightweight MTA-STS + DANE/TLSA resolver and TLS policy server for Postfix, prioritizing DANE.
A lightweight and highly performant MTA-STS + DANE/TLSA resolver and TLS policy socketmap server for Postfix that complies to the standards and prioritizes DANE where possible. Suggested at https://www.postfix.org/TLSRPT_README.html#mta-sts and on the official Postfix mailing list by Wietse among others. Similar package "postfix-mta-sts-resolver" (https://github.com/Snawoot/postfix-mta-sts-resolver) exists in repo, but breaks RFC 8461 (see vulnerability report CERT-Bund#2023092728001552).
