MTA-STS and SMTP TLS Reporting in SmarterMail
Idea shared by Scarab - 4/11/2019 at 2:58 PM
Under Consideration
Probably a little early to be asking as GMail just implemented MTA-STS (MTA Strict Transport Security) and SMTP TLS Reporting today, and Outlook365, Yahoo! and Comcast are still pending on their implementation. However, can we start looking into the feasibility to get MTA-STS checking and SMTP TLS Reporting in Smartermail?

The IETF-approved MTA-STS is RFC 8461, while SMTP TLS Reporting is RFC 8460.

Looks like it functions very similarly to DKIM & DMARC, so hopefully it shouldn't be much different to implement.

6 Replies

Reply to Thread
Employee Replied
Employee Post
Scarab, thank you for suggesting this. I have added it to our discussion items list.
Has there been any progress here? How can we implement this with SmarterMail?
I am curious whether anyone has already implemented this by using an open source product as an incoming gateway. 

 If so, has it helped to block unwanted mail?   

What types of exception rules were needed to handle special situations?  

This last question is a personal hot button because too many products have implemented SPFand DMARC as on-off switches with too little consideration for exception handling.
Does SmarterMail support  MTA-STS (MTA Strict Transport Security) and SMTP TLS Reporting? 
Short answer, No.   This discussion includes my solution for TLS reporting.

You may find this other discussion helpful on the problems with TLS1.2 enforcement

But nothing seems to have happened on MTA-STS.  SmarterMail has had their hands full shaking down problems with MAPI and IMAP.   But as I indicated in my note on this topic, if this is a regulatory requirement for you, you should be able to comply by implementing an incoming and outgoing gateway using another product, probably postfix.   We would all be interested in your results.
Hey @smartertools team! 

Do you have a status on the addition of MTA-STS checking and SMTP TLS Reporting?
Linda Pagillo
Mail's Best Friend
Email: linda.pagillo@mailsbestfriend.com
Web: www.mailsbestfriend.com
Authorized SmarterTools Reseller
Authorized Message Sniffer Reseller

Reply to Thread