Skip to content

Another utility to analyze state of deployment of security-related email protocols.

License

Notifications You must be signed in to change notification settings

foxcpp/mailsec-check

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

mailsec-check

Another utility to analyze state of deployment of security-related email protocols.

Compilation

Needs Go toolchain.

go get github.com/foxcpp/mailsec-check

Usage

mailsec-check example.org

Example

$ mailsec-check protonmail.com
-- Source forgery protection
[+] DKIM:    _domainkey subdomain present; DNSSEC-signed; 
[+] SPF:     present; strict; DNSSEC-signed; 
[+] DMARC:   present; strict; DNSSEC-signed; 

-- TLS enforcement
[+] MTA-STS: enforced; all MXs match policy; 
[+] DANE:    present for all MXs; DNSSEC-signed; no validity check done; 

-- DNS consistency
[+] FCrDNS:     all MXs have forward-confirmed rDNS
[+] DNSSEC:     A/AAAA and MX records are signed;

$ mailsec-check disroot.org
-- Source forgery protection
[+] DKIM:   _domainkey subdomain present; DNSSEC-signed; 
[+] SPF:    present; strict; DNSSEC-signed; 
[ ] DMARC:  present; no-op; DNSSEC-signed; 

-- TLS enforcement
[ ] MTA-STS: not enforced; all MXs match policy; 
[+] DANE:    present for all MXs; DNSSEC-signed; no validity check done; 

-- DNS consistency
[ ] FCrDNS:     no MXs with forward-confirmed rDNS
[+] DNSSEC:     A/AAAA and MX records are signed;

About

Another utility to analyze state of deployment of security-related email protocols.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages