Hiya, On 10/07/18 19:04, Viktor Dukhovni wrote: > On Tue, Jul 10, 2018 at 09:21:04AM +0100, Stephen Farrell wrote: > >> I didn't have time before the I-D cutoff but have since >> added a section on mail to the repo pre-01 version. (See >> [1] section 3.2.) I'd love to add more detail like that >> and/or more sections for other protocols if folks have >> data to offer with references. > > The numbers for MX hosts with working DANE TLSA records are: > > 4337 TLS 1.2 > 63 TLS 1.0 > 5 TLS 1.1
Thanks. I'll try add text on the above and other usable numbers sent to the list to the repo version before we shoot out a -01. > These are early adopters of enhanced SMTP security, so one would > expect to find modern software and an emphasis on security, and > yet, for >1% of the MX hosts, their SMTP server libraries fail to > negotiate TLS 1.2. Presumably, the broader MTA population has a > higher incidence of TLS 1.0-only servers. Fair point. Cheers, S. >
0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
