TLS-RPT - support for sending out TLS reports from the mailserver

CopyHosting · March 10, 2024, 2:23pm

VirtualMin supports running a local MTA and the client-side of DMARC. Maybe a wishlist item to also start supporting the server-side and start responding to RUA and RUF instructions?

It would require quite a bit of work: collecting the data, scheduling a cron to (daily) send out the mail in the required formats, adding config to enable and configure it.

The Abuse Reporting Format (ARF) as per RFC6591 should support Authentication Failure Reporting Format (AFRF) and Incident Object Description (IODEF).

cyberndt · March 10, 2024, 3:29pm

You would first need to install SPF Policy Agent for Postfix and of course DKIM first and set them up accordingly. There are several tutorials on the web that can guide you.
Example for Ubuntu Server: https://blog.matrixpost.net/set-up-spf-and-dkim-for-postfix-on-ubuntu/

After you can than install and setup DMARC for Postfix to do exactly what you are asking for by sending out reports.
Example: https://blog.matrixpost.net/set-up-dmarc-for-postfix-on-ubuntu/

These are just examples and I encourage you to read up on SPF and DMARC before installing them.

Good Luck!

CopyHosting · March 11, 2024, 8:08am

Tip: for testing to see if your TLS-RPT reports work correctly, try using https://email-security-scans.org/

system · May 10, 2024, 8:09am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.