On Tue, Jul 29, 2014 at 07:24:41PM +0200, BlueStar88 wrote: > First we should extend DNS using another MX-like entry, to be able to > define authoritative MTA client nodes for a specific domain, so we have > something to stick on.
This was abandoned in favour of SPF, DKIM and DMARC.
http://tools.ietf.org/html/draft-crocker-csv-csa-00
It was an anti-spam measure, and has no direct bearing on TLS client
authentication.
--
Viktor.
