On Wed, Jun 26, 2024 at 04:29:53PM -0400, John Levine via Postfix-users wrote:
> I'm trying to set up a little POP toaster on debian that has a few
> addreses all in virtual domains.
>
> I'm using Cyrus SASL (no Dovecot allowed for reasons)
That's unfortunate, b/c often much simpler...
> and to
I'm trying to set up a little POP toaster on debian that has a few addreses all
in virtual domains.
I'm using Cyrus SASL (no Dovecot allowed for reasons) and to keep it
simple, I'm using sasldb authentication. I can set up the sasldb with
saslpasswd2 but I am stuck getting the Cyrus sasl daemon t
>there is also this online test tool :
>https://en.internet.nl/mail/gmail.com/1276778/
>https://en.internet.nl/mail/outlook.com/1276787/
>https://en.internet.nl/mail/proton.me/1276789/
Most of these online tools check inbound (the easy and marketing part) only.
Joachim
__
check also rspamd, it's a great software
On 6/24/24 01:19, Jeff Peng via Postfix-users wrote:
what's the mainstream milter server for customized content analysis such
as headers and languages? I may want to block some special messages
which have a special header or special language (like middl
Hi Victor,
>> Gmx and web.de do support SMTP-DANE (with bugs)
>Can you provide a bit more detail on the outbound problems with gmx.de/web.de?
Negation missing in your wording: United Internet never delivers to a server
that has a certificate valid via TLSA record only but cannot be validated to a
As of 6 month ago, proofpoint had no current plans to implement DANE. They
perceived it mostly as a European ’thing’, and begin to talk about smtp-sts..
-michael
> On 26 Jun 2024, at 13.45, Jeff Pang via Postfix-users
> wrote:
>
>
> I am sorry to see pphosted.com and mimecast.com have no DAN
On Wed, Jun 26, 2024 at 01:35:30PM +0200, Joachim Lindenberg via Postfix-users
wrote:
> I have done some testing via my own tool and published results on
> https://blog.lindenberg.one/EmailSecurityTest.
>
> Gmx and web.de do support SMTP-DANE (with bugs)
Can you provide a bit more detail on the
On Wed, Jun 26, 2024 at 07:45:20PM +0800, Jeff Pang via Postfix-users wrote:
> Can you also add SecuMail.de into the list? Thanks victor.
The list of MX hosters is machine-generated by aggregating DNSSEC-signed
customer domains by their MX host domain. Only providers with 1000 or
more DNSSEC-sig
I am sorry to see pphosted.com and mimecast.com have no DANE deployed,
since proofpoint and mimecast are the lartest email protection companies
here.
Can you also add SecuMail.de into the list? Thanks victor.
Global:https://dnssec-stats.ant.isi.edu/~viktor/hosters.html
--
Jeff Pan
Στις 26/6/24 14:19, ο/η Jeff Pang via Postfix-users έγραψε:
May I ask if the main providers like gmail, outlook, yahoo, proton, gmx
etc, have smtp-dane deployed?
there is also this online test tool :
https://en.internet.nl/mail/gmail.com/1276778/
https://en.internet.nl/mail/outlook.com/12
thank you so much victor for letting us know.
- gmail: NO
- yahoo: NO
- outlook:
- outbound: YES
- inbound: Still in development/pilot phase, with
initial deployments at:
- hotmail.cz
- hotmail.nl
- uoou.cz
I have done some testing via my own tool and published results on
https://blog.lindenberg.one/EmailSecurityTest.
Gmx and web.de do support SMTP-DANE (with bugs), outlook and gmail don´t.
outlook and gmail also support MTA-STS at least partially. Proton support
SMTP-DANE inbound only. Yahoo don´
On Wed, Jun 26, 2024 at 07:19:01PM +0800, Jeff Pang via Postfix-users wrote:
> May I ask if the main providers like gmail, outlook, yahoo, proton, gmx etc,
> have smtp-dane deployed?
- gmail: NO
- yahoo: NO
- outlook:
- outbound: YES
- inbound: Still in development/pil
May I ask if the main providers like gmail, outlook, yahoo, proton, gmx
etc, have smtp-dane deployed?
Thanks
That's the reason you're unable to verify your TLSA records, the
resolver in /etc/resolv.conf is not a DNSSEC-validating resolver,
or you're missing "options trust-ad" in /etc/resol
On Wed, Jun 26, 2024 at 11:26:59AM +0200, Gerd Hoerst via Postfix-users wrote:
> I checked my domain with posttls-finger it brings some errors (I can
> only do it on the machine itself)
>
> posttls-finger: warning: DNSSEC validation may be unavailable
> posttls-finger: warning: reason: dnssec_pro
Hi !
Regarding this topic here i checked my domain with posttls-finger it
brings some errors (i can only do it on the machine itself)
posttls-finger: warning: DNSSEC validation may be unavailable
posttls-finger: warning: reason: dnssec_probe 'ns:.' received a response
that is not DNSSEC valid
16 matches
Mail list logo
