Say, has anybody here deployed MTA-STS? Am for work. Am still trying to figure out why policy is served over HTTPS instead of DNS. Haven't found the right RFC section yet. Any other comments on MTA-STS? Also, specifically Ben, when you were complaining about SMTP TLS enforcement, you still mean that despite MTA-STS, and Received header TLS logging because of these? - Low MTA-STS adoption - Not everybody filling in, or maybe honestly, the received header TLS logging - Old, no-TLS SMTP servers - Not showing the IMAP LDA, different IMAP TLS policy, non SMTP or IMAP portions of an email provider? - Anything else? Also, sorry for the double email Ben; sent this to the original list address by accident. -- Manage your subscription: https://lists.linux-ottawa.org/sigs-l3go/listinfo.html