I'm not aware of any MUA that supports DANE. I'm also not sure there exists an RFC that notes how an MUA should use DANE for submitting messages. I suppose that doesn't preclude one from using DNSSEC to ensure the records are signed, but am not aware of a document that creates something like a TLSA for the MUA to evaluate. It all seems reasonable, just not sure anyone has defined it as of yet. This was the best I could find,
https://datatracker.ietf.org/doc/draft-fanf-dane-mua/00/ and it seems to have expired in late 2012. The IETF DANE list (d...@ietf.org) might be a place to ask if this is under consideration. -- Alex Brotman Sr. Engineer, Anti-Abuse & Messaging Policy Comcast > -----Original Message----- > From: mailop <mailop-boun...@mailop.org> On Behalf Of Slavko via mailop > Sent: Sunday, October 22, 2023 4:08 PM > To: mailop@mailop.org > Subject: [EXTERNAL] Re: [mailop] Success MiTM attack > > Dňa 22. októbra 2023 19:18:33 UTC používateľ Jeroen via mailop > <mailop@mailop.org> napísal: > > >...most MTAs and MUAs support it out of the box. > > Is list of these availeble somewhere? > > regards > > > -- > Slavko > https://urldefense.com/v3/__https://www.slavino.sk/__;!!CQl3mcHX2A!DR3cDu > B_c7pE3X2lU1qU- > 8h2_1zDOAt_7_rQtDn4jmhuSJaGjzrt_SvUKVX9Cfu45zDoQU0nOqMn_O9xgqc$ > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://urldefense.com/v3/__https://list.mailop.org/listinfo/mailop__;!!CQl3mcH > X2A!DR3cDuB_c7pE3X2lU1qU- > 8h2_1zDOAt_7_rQtDn4jmhuSJaGjzrt_SvUKVX9Cfu45zDoQU0nOqMnQQ0EG_I$ _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
