DANE https://datatracker.ietf.org/doc/html/rfc7671 stands for DNS-Based Authentication of Named Entities. This protocol allows clients to check the remote certificate used trough TLSA DNS records. DANE requires DNSSEC https://datatracker.ietf.org/doc/html/rfc9364. This post is not about the client side implementation, it is about the backend. I’ll explain how to created TLSA records that use the public key of the …
Continue reading “Allow DANE authentication to your mail server or website”