starttls-everywhere
starttls-everywhere copied to clipboard
EFForg
A system for ensuring & authenticating STARTTLS encryption between mail servers
The check "babai.ru" show: Failure: Name in cert doesn't match hostname: x509: certificate is valid for localhost, not mail.babai.ru But new version openssl, testssl.sh, sslyze immuniweb test show valid thawte...
I've updated the StartTLS policies for my domains. I hope it's okay for me to create and use an alias.
I am working on implementing the STARTTLS Everywhere list support in [chasquid](https://blitiri.com.ar/p/chasquid/) MTA. I expected RULES.md to be up-to-date, but noticed a couple of issues with it: - Example file...
RFC 8461 says policies MX lists contain domains in A-labels form. What is about policy.json?
It looks like the outbound mail server being used from Amazon, has weak TLS support, which is interesting given the purpose of this effort. :) This is the log I...
Issue to track more validation for the JSON file: reporting endpoints should be mailto: or https: and mxs should be valid FQDNs.
Hi, There's currently a lot of work being done within UTA ("Utilising TLS in applications" - https://datatracker.ietf.org/wg/uta/documents) regarding mail security. Strong contenders are: - SMTP-STS (to be splitted into multiple...
The README still strongly discurages to use this plugin on production systems. As the last activity was over a year ago, I'm just wondering if the plugin maybe is now...
I'm the administrator of this domain, and can be contacted via the e-mail address in the associated commit message.
