[enhancement-requests] mta-sts support?

[MSandro]

Thank you for opening an issue with Mailu. Please understand that issues are meant for bugs and enhancement-requests.
For user-support questions, reach out to us on matrix.

my mail server gets blocked by Outlook. so it would be great to have an mta-sts option to prove the e-mail server.
I'm not a professional on the subject. With Mailu I managed to install an email server for the first time.

[ronivay]

+1 for MTA-STS support, but just saying lack of it is not the reason why outlook.com is rejecting your messages. MTA-STS is used to define a policy that all incoming messages to your mailserver for specific domains must be sent using encrypted connection.

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

I naively feel like this shouldn't be too hard. So world like to work on it.

[nextgens]

@robjloranger have you managed to make progress on this? Do you need any help?

The "receive" side is not too hard... the "send" side is trickier

I have not yet had a chance, I just wrote mine by hand for the time being.

So if your interested please feel free.

What do you mean by send and receive side?

[nextgens]

I mean publishing the policy isn't hard... using policies published by others is harder.

Ah yes, very much so. And then sending reports

[nextgens]

Here's my overrides/nginx/mta-sts.conf; You also need to add mta-sts.example.com to HOSTNAMES to ensure that you get a valid certificate for it

      location @mta-sts {
return 200 "version: STSv1
mode: testing
max_age: 86400
mx: mx.example.com\r\n";
      }

      location ^~ /.well-known/mta-sts.txt {
        try_files $uri @mta-sts;
      }