Git/email-toolbox-wiki
1
0
Fork 0
mirror of https://github.com/internetstandards/toolbox-wiki.git synced 2024-12-04 16:55:10 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix some TOC anchor links

Browse Source
This commit is contained in:
Ioannis Cherouvim 2021-10-01 04:44:12 +03:00 committed by GitHub
parent 3c022e3e85
commit 01a2c69558
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
DANE-for-SMTP-how-to.md
View File

@ -13,29 +13,29 @@ This how-to is created by the Dutch Internet Standards Platform (the organizatio
* For more information on adoption statistics and software support, take a look at: [https://github.com/baknu/DANE-for-SMTP/wiki](https://github.com/baknu/DANE-for-SMTP/wiki) * For more information on adoption statistics and software support, take a look at: [https://github.com/baknu/DANE-for-SMTP/wiki](https://github.com/baknu/DANE-for-SMTP/wiki)
# Table of contents # Table of contents
- [What is DANE?](#what-is-dane-) - [What is DANE?](#what-is-dane)
- [Why use DANE for SMTP?](#why-use-dane-for-smtp-) - [Why use DANE for SMTP?](#why-use-dane-for-smtp)
* [Risks of SMTP with opportunistic TLS](#risks-of-smtp-with-opportunistic-tls) * [Risks of SMTP with opportunistic TLS](#risks-of-smtp-with-opportunistic-tls)
* [DANE addresses these risks](#dane-addresses-these-risks) * [DANE addresses these risks](#dane-addresses-these-risks)
* [How about MTA-STS?](#how-about-mta-sts) * [How about MTA-STS?](#how-about-mta-sts)
- [DANE TLSA record example](#dane-tlsa-record-example) - [DANE TLSA record example](#dane-tlsa-record-example)
- [Advantages of DANE explained by illustrations](#advantages-of-dane-explained-by-illustrations) - [Advantages of DANE explained by illustrations](#advantages-of-dane-explained-by-illustrations)
* [Mail delivery: TLS without DANE](#mail-delivery--tls-without-dane) * [Mail delivery: TLS without DANE](#mail-delivery-tls-without-dane)
* [Mail delivery: TLS with MITM stripping TLS](#mail-delivery--tls-with-mitm-stripping-tls) * [Mail delivery: TLS with MITM stripping TLS](#mail-delivery-tls-with-mitm-stripping-tls)
* [Mail delivery: TLS with MITM using evil certificate](#mail-delivery--tls-with-mitm-using-evil-certificate) * [Mail delivery: TLS with MITM using evil certificate](#mail-delivery-tls-with-mitm-using-evil-certificate)
* [Mail delivery: TLS with DANE](#mail-delivery--tls-with-dane) * [Mail delivery: TLS with DANE](#mail-delivery-tls-with-dane)
* [Mail delivery: TLS with DANE without DNSSEC](#mail-delivery--tls-with-dane-without-dnssec) * [Mail delivery: TLS with DANE without DNSSEC](#mail-delivery-tls-with-dane-without-dnssec)
- [Reliable certificate rollover](#reliable-certificate-rollover) - [Reliable certificate rollover](#reliable-certificate-rollover)
* [Points of attention when rolling over using "current + next"](#points-of-attention-when-rolling-over-using--current---next-) * [Points of attention when rolling over using "current + next"](#points-of-attention-when-rolling-over-using-current--next)
- [Tips, tricks and notices for implementation](#tips--tricks-and-notices-for-implementation) - [Tips, tricks and notices for implementation](#tips-tricks-and-notices-for-implementation)
- [Inbound e-mail traffic (publishing DANE DNS records)](#inbound-e-mail-traffic--publishing-dane-dns-records-) - [Inbound e-mail traffic (publishing DANE DNS records)](#inbound-e-mail-traffic-publishing-dane-dns-records)
* [Generating DANE records](#generating-dane-records) * [Generating DANE records](#generating-dane-records)
* [Publishing DANE records](#publishing-dane-records) * [Publishing DANE records](#publishing-dane-records)
* [Generating DANE roll-over records](#generating-dane-roll-over-records) * [Generating DANE roll-over records](#generating-dane-roll-over-records)
* [Publishing DANE roll-over records](#publishing-dane-roll-over-records) * [Publishing DANE roll-over records](#publishing-dane-roll-over-records)
- [Implementing DANE for SMTP on Postfix (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-postfix--inbound---outbound-e-mail-traffic-) - [Implementing DANE for SMTP on Postfix (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-postfix-inbound--outbound-e-mail-traffic)
* [Configuring Postfix](#configuring-postfix) * [Configuring Postfix](#configuring-postfix)
- [Implementing DANE for SMTP on Exim (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-exim--inbound---outbound-e-mail-traffic-) - [Implementing DANE for SMTP on Exim (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-exim-inbound--outbound-e-mail-traffic)
* [Configuration for inbound e-mail traffic](#configuration-for-inbound-e-mail-traffic) * [Configuration for inbound e-mail traffic](#configuration-for-inbound-e-mail-traffic)
+ [Install or generate key pair](#install-or-generate-key-pair) + [Install or generate key pair](#install-or-generate-key-pair)
+ [Configure TLS](#configure-tls) + [Configure TLS](#configure-tls)
@ -43,7 +43,7 @@ This how-to is created by the Dutch Internet Standards Platform (the organizatio
+ [DNSSEC validating resolvers](#dnssec-validating-resolvers) + [DNSSEC validating resolvers](#dnssec-validating-resolvers)
+ [Configure DNSSEC validation in Exim](#configure-dnssec-validation-in-exim) + [Configure DNSSEC validation in Exim](#configure-dnssec-validation-in-exim)
+ [Configure DANE](#configure-dane) + [Configure DANE](#configure-dane)
- [Implementing DANE for SMTP on Halon (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-halon--inbound---outbound-e-mail-traffic-) - [Implementing DANE for SMTP on Halon (inbound & outbound e-mail traffic)](#implementing-dane-for-smtp-on-halon-inbound--outbound-e-mail-traffic)
* [Generic configuration](#generic-configuration) * [Generic configuration](#generic-configuration)
+ [Install or generate key pair](#install-or-generate-key-pair-1) + [Install or generate key pair](#install-or-generate-key-pair-1)
+ [DNSSEC](#dnssec) + [DNSSEC](#dnssec)
@ -52,7 +52,7 @@ This how-to is created by the Dutch Internet Standards Platform (the organizatio
+ [Transport Label](#transport-label) + [Transport Label](#transport-label)
+ [Scripting](#scripting) + [Scripting](#scripting)
+ [Logging](#logging) + [Logging](#logging)
- [Implementing DANE for SMTP on Port25 PowerMTA (outbound e-mail traffic)](#implementing-dane-for-smtp-on-port25-powermta--outbound-e-mail-traffic-) - [Implementing DANE for SMTP on Port25 PowerMTA (outbound e-mail traffic)](#implementing-dane-for-smtp-on-port25-powermta-outbound-e-mail-traffic)
* [Generic configuration](#generic-configuration-1) * [Generic configuration](#generic-configuration-1)
+ [Configure the use of DANE on the domain level](#configure-the-use-of-dane-on-the-domain-level) + [Configure the use of DANE on the domain level](#configure-the-use-of-dane-on-the-domain-level)
+ [Logging](#logging-1) + [Logging](#logging-1)