https://bugs.exim.org/show_bug.cgi?id=2265
Bug ID: 2265
Summary: TLS SNI not auto-set for DANE clients
Product: Exim
Version: N/A
Hardware: x86
OS: All
Status: NEW
Severity: bug
Priority: medium
Component: TLS
Assignee: jgh146exb@???
Reporter: pdp@???
CC: exim-dev@???
We should be auto-setting SNI for DANE, ignoring the manual tls_sni control,
when a domain is DANE-secured. The SNI field is the MX hostname. RFCs 7671
and 7672.
("base domain" in DANE is the name before adding the _25._tcp stuff to do the
lookup, so the MX hostname).
This means we're missing an RFC MUST requirement for DANE.
--
You are receiving this mail because:
You are on the CC list for the bug.
