rnsrk/open-productive-stack
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

small add for DNSSEC and MTA-STS

Browse source
This commit is contained in:
rnsrk 2026-01-19 09:10:13 +01:00
parent f670bec1b1
commit b006c8f809
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
README.md
View file

@ -34,6 +34,11 @@ Run the unified diagnostics script from the repository root:
``` ```
This combines the previous `diagnostic.sh` and `health_check.sh` checks. This combines the previous `diagnostic.sh` and `health_check.sh` checks.
## Mail Security TODOs
- Enable DNSSEC at the DNS provider and ensure DS/DNSKEY are published.
- Add TLSA (DANE) records after DNSSEC is active.
- Verify MTA-STS policy and TLS-RPT DNS records after propagation.
## Install ## Install
### Prerequisites ### Prerequisites
1) Copy the env and docker-compose.override.yml to the service directories via the script. 1) Copy the env and docker-compose.override.yml to the service directories via the script.