Mechiel,
TLSRPT is going to look for its information at _smtp._tls.. That
same should be the policy-domain in the report. The domain for
the MTA-STS/DANE policies may be different such as you mentioned with DANE.
The MX for foo.com could point at mx.example.net. The TLSRPT will look for
On Tue, Nov 14, 2023 at 03:39:21PM +0100, Mechiel Lukkien wrote:
> I'm implementing (outgoing) SMTP TLS reporting (RFC 8460) in my mail
> server (https://github.com/mjl-/mox) and am getting confused by
> TLSRPT's use of "domain"/"recipient domain"/"policy domain",
> especially related to DANE. It
