> On Mar 21, 2016, at 12:18 PM, David Schweikert <da...@schweikert.ch> wrote:
>
> I wonder what the Postfix community thinks or plans to do according to
> this standard that is being written:
> https://datatracker.ietf.org/doc/draft-margolis-smtp-sts/?include_text=1
My take on the draft is that it is a hack to get the large email providers
doing SMTP TLS with authentication amongst themselves while they take multiple
years to ponder DNSSEC, which can be tricky to retrofit onto their complex
deployments. The draft still has warts to iron out, I'll help them with those.
I am not convinced this scales down at all well, but there will likely be demand
for securing outbound email traffic sent to the large providers. I am not a big
fan of code to support the centralized email storage model of the large
providers,
but that battle is lost for now.
--
Viktor.
