Line 110: |
Line 110: |
| _cardavs._tcp TXT path=/caldav | | _cardavs._tcp TXT path=/caldav |
| | | |
| + | ==== DNS and file for MTA-STS and TLS-RPT ==== |
| + | as you are there you can inform the worl you use along side with DKIM, SPF and DMARC properly configured this. See |
| | | |
| + | create a subdomain ''mta-sts.yourdomain.com , make it point to your server, and set [[Letsencrypt|Let's Encrypt]] to create a certificate for it'' |
| + | |
| + | fill the content of the file /home/e-smith/files/ibays/Primary/''.well-known/mta-sts.txt with''<syntaxhighlight lang="console"> |
| + | version: STSv1 |
| + | mode: testing |
| + | mx: yourdomain.com |
| + | max_age: 604800 |
| + | </syntaxhighlight>fill the following records at your dns. (fill the id field with current timestamp, and update the domain/ email to your needs)<syntaxhighlight lang="console"> |
| + | _smtp._tls.yourdomain.com. 900 IN TXT "v=TLSRPTv1; rua=mailto:admin@yourdomain.com" |
| + | _mta-sts.yourdomain.com. 900 IN TXT "v=STSv1; id=1575556993" |
| + | </syntaxhighlight> |
| + | |
| + | ==== DNS and BIMI Record ==== |
| + | add a picture as svg accessible with your web srver, be sure DMARC fields are ok. and then file the DNS field, with the correct URL. You might need to check if your SVG is compatible <syntaxhighlight lang="console"> |
| + | default._bimi IN TXT "v=BIMI1; l=https://yourdomain.com/images/Logo.svg" |
| + | </syntaxhighlight>you might also obtain a certificate for your logo after having validate your ownership see: Verified Mark Certificates (VMC). As of 2023 this is a paid certificate for about 1500 USD a year, after registering for your trademark. So this will be kept out of scope of this page for the moment |
| + | |
| + | # https://authindicators.github.io/rfc-brand-indicators-for-message-identification/ |
| + | # https://mxtoolbox.com/dmarc/bimi/how-to-create-bimi-record |
| + | # https://bimigroup.org/using-the-rnc-schema-to-validate-bimi-svg-images/ |
| + | |
| + | ==== DNS DKIM /SPF and DMARC ==== |
| + | see [[Email#DKIM Setup - qpsmtpd version .3E.3D 0.96]] |
| | | |
| ====DNS CNAME Record ==== | | ====DNS CNAME Record ==== |