We have a standard for protecting DNS, but it's so bad - the tools are bad, the ...

		dcbadacd on April 11, 2019 \| parent \| context \| favorite \| on: Making email more secure with MTA-STS standard We have a standard for protecting DNS, but it's so bad - the tools are bad, the % of deployment is bad, the resolvers handle it bad, the ability for a regular sysadmin to deploy it is bad, it's just super bad compared to what we have with the HTTP PKI.