nanog mailing list archives

Re: MTA-STS, was Not So Massive change in Public Cert behaviour coming soon

From: "John R. Levine via NANOG" <nanog () lists nanog org>
Date: 19 May 2025 12:38:52 -0400

On Mon, 19 May 2025, Bjørn Mork wrote:

MTA-STS does the same thing more kludgily for people who don't like DNSSEC.

What if I don't like public CA certificates for email servers?


If you don't like it, don't use it.  The IETF isn't the Network Police.

Will MTA-STS stay optional, or will it be "optional" like DKIM and SPF?

Given that it does something completely different and is intnded toprotect mail you receive rather than mail you send, no.

Why don't we just deprecate MTA-STS and make DANE mandatory, while it is
still possible?

It's an open secret that MTA-STS exists because one of the large mailproviders doesn't want to use DNSSEC. The IETF is still not the NetworkPolice so there's nothing we can do about it.


R's,
John
_______________________________________________

NANOG mailing listhttps://lists.nanog.org/archives/list/nanog () lists nanog org/message/JZBNLZXH3XVDOQZH3HTFPGD6UZ7UT7JM/

Current thread:

Re: Massive change in Public Cert behaviour coming soon, (continued)
- - - Re: Massive change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon brent saner via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Randy Bush via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Randy Bush via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Michael Thomas via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon John Levine via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Bjørn Mork via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon Tom Ivar Helbekkmo via NANOG (May 19)
    - Re: MTA-STS, was Not So Massive change in Public Cert behaviour coming soon John R. Levine via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon brent saner via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon William Herrin via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon brent saner via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon William Herrin via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon brent saner via NANOG (May 18)
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon William Herrin via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon Crist Clark via NANOG (May 18)

(Thread continues...)