Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[enhancement-requests] mta-sts support? #1798

Closed
MSandro opened this issue Apr 4, 2021 · 8 comments · Fixed by #1961
Closed

[enhancement-requests] mta-sts support? #1798

MSandro opened this issue Apr 4, 2021 · 8 comments · Fixed by #1961
Assignees
Labels
priority/p2 Minor bug / Could have type/enhancement Enhances existing functionality

Comments

@MSandro
Copy link

MSandro commented Apr 4, 2021

Thank you for opening an issue with Mailu. Please understand that issues are meant for bugs and enhancement-requests.
For user-support questions, reach out to us on matrix.

image
my mail server gets blocked by Outlook. so it would be great to have an mta-sts option to prove the e-mail server.
I'm not a professional on the subject. With Mailu I managed to install an email server for the first time.

@ronivay
Copy link
Contributor

ronivay commented Apr 10, 2021

+1 for MTA-STS support, but just saying lack of it is not the reason why outlook.com is rejecting your messages. MTA-STS is used to define a policy that all incoming messages to your mailserver for specific domains must be sent using encrypted connection.

@stale
Copy link

stale bot commented May 1, 2021

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@stale stale bot added the status/response_needed Waiting for a response from the author label May 1, 2021
@lub lub added type/enhancement Enhances existing functionality priority/p2 Minor bug / Could have labels May 2, 2021
@stale stale bot removed the status/response_needed Waiting for a response from the author label May 2, 2021
@ghost
Copy link

ghost commented Jun 26, 2021

I naively feel like this shouldn't be too hard. So world like to work on it.

@nextgens
Copy link
Contributor

nextgens commented Aug 2, 2021

@robjloranger have you managed to make progress on this? Do you need any help?

The "receive" side is not too hard... the "send" side is trickier

@ghost
Copy link

ghost commented Aug 3, 2021

I have not yet had a chance, I just wrote mine by hand for the time being.

So if your interested please feel free.

What do you mean by send and receive side?

@nextgens
Copy link
Contributor

nextgens commented Aug 4, 2021

I mean publishing the policy isn't hard... using policies published by others is harder.

@ghost
Copy link

ghost commented Aug 5, 2021

Ah yes, very much so. And then sending reports

@nextgens
Copy link
Contributor

nextgens commented Aug 22, 2021

Here's my overrides/nginx/mta-sts.conf; You also need to add mta-sts.example.com to HOSTNAMES to ensure that you get a valid certificate for it

      location @mta-sts {
return 200 "version: STSv1
mode: testing
max_age: 86400
mx: mx.example.com\r\n";
      }

      location ^~ /.well-known/mta-sts.txt {
        try_files $uri @mta-sts;
      }

@nextgens nextgens self-assigned this Aug 29, 2021
@bors bors bot closed this as completed in e38844c Sep 5, 2021
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 21, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
priority/p2 Minor bug / Could have type/enhancement Enhances existing functionality
Projects
None yet
Development

Successfully merging a pull request may close this issue.

4 participants