~mdw / zones / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cf1a881) | patch
distorted.lisp: Prepare for LetsEncrypt certificate on outward IMAP/SMTP.
authorMark Wooding <mdw@distorted.org.uk>
Wed, 27 Jun 2018 08:25:48 +0000 (09:25 +0100)
committerMark Wooding <mdw@distorted.org.uk>
Wed, 27 Jun 2018 08:32:20 +0000 (09:32 +0100)
commit40832d8058e6f13747cb8abac5f64263827bde8a
tree4156e7d8664a83e0a589acda45c2c937330aded4tree | snapshot (tar.gz zip)
parentcf1a88157dc784a8bcb88b1647e96eb5fe1014bfcommit | diff
distorted.lisp: Prepare for LetsEncrypt certificate on outward IMAP/SMTP.

Some SMTP TLS checking tools complain about the use of private
certificate authorities by public SMTP servers.  And I must admit that,
while an SMTP server which uses an unverifiable certificate is much
better than one which doesn't try to use TLS at all, it's not as good as
it could be.  So I want to use a LetsEncrypt certificate here.  Prepare
for this by publishing the service public key hash in the TLSA records.
distorted.lisp diff | blob | blame | history
Zone files for the DNS zones I administer