Am 12.01.2015 um 17:42 schrieb James B. Byrne:
On Mon, January 12, 2015 07:15, Patrick Ben Koetter wrote:
Today, amost 3% of DANE SMTP enabled domains either fail to validate
or publish unsupported TLSA records[1]. This fraction would have been
even higher without an effort to notify problem sites most of which
have fixed the reported issues.
This error rate is too high.
The DANE Validator <https://dane.sys4.de> is intended to identify
configuration errors and to help administrators create working DANE
SMTP configurations. Today's release marks the first public beta.
We plan to release version 1 soon.
This validator specifically declares DLV trust rooted sites as DNSSEC
insecure. Is this correct? Has DLV been formally deprecated? Is
dlv.isc.org not considered trusted?
take a look in the archive
DLV was discussed a few days ago on this list
http://postfix.1071664.n5.nabble.com/DANE-and-DLV-td73609.html
