[enhancement]: Remove technical subdomains from default MX patterns for MTA-STS #429
Closed
1 task done
Labels
enhancement
New feature or request
Comments
|
Probably also better remove technical subdomains from the TSLA records |
|
The TLSA records should reflect the correct port what they are used for, in this case "443". The missing TLSA records for IMAPS and SMTPs should be added to. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Which feature or improvement would you like to request?
The default MX patterns used by the MTA-STS get created from the available TLS certificates, but there is one problem with it:
I also need to use TLS certificates for the CNAME entries of
mta-sts.example.com,autoconfig.example.comandautodiscover.example.com. So I added those to the ACME provider. Therefore by default they also appear in themta-sts.txtas MX entries.For now I just used the MX patterns override field and that of course works.
It might be a good idea though to automatically exclude entries starting with
mta-sts.,autoconfig.orautodiscover.from that default list.Is your feature request related to a problem?
No response
Code of Conduct
The text was updated successfully, but these errors were encountered: