Validating an SMTP server

Viktor Dukhovni ietf-dane at
Mon Sep 7 23:06:47 CEST 2015

On Mon, Sep 07, 2015 at 10:59:24PM +0200, Benny Pedersen wrote:

> and is still same ssl/tls, skip restriction on
> subdomains then ? (include cname mx check or not)
> but if and make subdomain restriction ?
> cname to another tls/ssl is worst, where i think cname to same tls/ssl is
> still ok

Sorry, no idea what you're saying.  Much too cryptic.

All I can say about is that this domain is not DNSSEC
signed, so DANE is out of scope for  In any case, it
has neither MX records, nor A or AAAA records, so it receives no


More information about the dane-users mailing list