Michael Ströder michael at
Thu Jan 15 16:21:42 CET 2015

Frank Fiene wrote:
> But what is about incoming connections?
> There seems to be no parameter like smtpd_tls_security_level or smtpd_dns_support_level.

A SSL/TLS server cannot determine whether a TLS client properly verified the
server's certificate (or raw public key). And DANE is not client authentication.

Ciao, Michael.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4252 bytes
Desc: S/MIME Cryptographic Signature
URL: <>

More information about the dane-users mailing list