> On Apr 3, 2018, at 8:08 PM, David Mehler <dave.meh...@gmail.com> wrote: > > What I'm wanting to do is configure clients to get their account > information automatically. I know this for Mozilla is called > autoconfig and for Microsoft it's autodiscover, and apparently there's > an srv record I just read about.
The relevant specification is RFC6186: https://tools.ietf.org/html/rfc6186 perhaps some MUAs support it. Without DNSSEC such auto-configuration leaves important security decisions to the user (or just configures insecurely), and since DNSSEC is often not done on end-user devices even when the domain is signed, this technique carries some risk, but once supported by the MUA, you're no safer if you don't use it, modulo "training" users to accept insecurely obtained configuration options. -- Viktor.
