Skip to content
Ticket Portal
  • There are no suggestions because the search field is empty.

MTA-STS Record and Policy Checker

MTA-STS is a standard that enhances email security by enforcing secure connections between mail servers. It works by allowing domain owners to specify a policy that mandates secure connections (TLS) when exchanging emails with their domain. An MTA-STS Policy is published in DNS and includes information about the TLS parameters expected by the sending mail server.

A hypothetical "MTA-STS Record and Policy Checker" might perform the following functions:

1- Record Verification: The checker could verify the existence and correctness of MTA-STS records in the DNS for a given domain. This involves looking for the presence of specific TXT records under the _mta-sts subdomain.

2- Policy Validation: The tool might check the MTA-STS policy specified in the DNS records to ensure it follows the correct syntax and adheres to the standards. This involves confirming that the policy requires secure connections and includes other relevant parameters.

3- Reporting: The checker could provide a summary or detailed report on the status of the MTA-STS records and policies, indicating whether they are correctly configured or if any issues are detected.

4- Policy Enforcement: Some advanced checkers might simulate attempts to connect to the mail server using the specified MTA-STS policy to ensure that the policy is correctly enforced.

MTA-STS Record and Policy Generator

A hypothetical "MTA-STS Record and Policy Generator" could perform the following functions:

1- Input Configuration: Users would input configuration details such as their domain, desired security policies, and MX Hosts.

2- Generate MTA-STS Record: The generator would then create the necessary DNS records (TXT records under the _mta-sts subdomain) based on the provided configuration. This record typically includes information about the maximum age of the policy, the mode of policy enforcement (Testing or Enforcing), and the specific TLS parameters expected.

3- Generate Policy File: Some MTA-STS implementations use a separate policy file hosted on the web server. The generator might create this policy file based on the provided configuration, ensuring it aligns with the specified security policies.

4- Download or Publish: Users can download the generated MTA-STS record and policy file for manual DNS entry and web server hosting, respectively. 

5- Guidance: The generator could offer guidance on how to implement and publish the generated MTA-STS records and policy files to ensure they are correctly configured and take effect.

If you experience any limitations, do not hesitate to open a support ticket using this link. Our support team will gladly assist you.