Gmail starts using MTA-STS30 April 2019Feisty Duck’s Cryptography & Security Newsletter is a periodic dispatch bringing you commentary and news surrounding cryptography, security, privacy, SSL/TLS, and PKI. It's designed to keep you informed about the latest developments in this space. Enjoyed ...
Google rolled out MTA-STS and TLS Reporting support for Gmail servers today, April 10, 2019.
In setting up SMTP MTA Strict Transport Security (RFC 8461) for my domain, I've noticed some contradictory advice and practice: although the maximum value for the max_age policy value is around one year and the RFC states that "implementers SHOULD prefer policy "max_age" values...
As we can see, nothing interesting – it worked for the one email I got into this domain from Gmail that day! On one result its not time to change the policy from “testing” to “enforce” but it might be soon as I know it is working....
The MTA-STS standard has widespread support among major mail service providers. The authors include members from Microsoft, Oath and Google. Google's Gmail alreadysets and validatesMTA-STS policies. MTA-STS fixes a long-standing gap inemail connection security. While connections from the user ...