Implement DANE for outgoing mail authentication.
DANE ensures that email is only deleverd over a secure path.
See: https://github.com/internetstandards/toolbox-wiki/blob/main/DANE-for-SMTP-how-to.md
3
votes
![](https://secure.gravatar.com/avatar/27a599a0bb73f7c0f76aa3f10445307a?size=40&default=https%3A%2F%2Fassets.uvcdn.com%2Fpkg%2Fadmin%2Ficons%2Fuser_70-6bcf9e08938533adb9bac95c3e487cb2a6d4a32f890ca6fdc82e3072e0ea0368.png)
-
John Hepburn commented
I agree that DANE should be implemented for outgoing mail authentication. Currently mailjet relies on a certificate from a certificate authority, but this has been compromised in some cases. DANE provides superior security. I recently saw a statistic (not sure of the reliability) that there are about 24 million mail transfer agents, of which about 4 million now support DANE. I expect that proportion to increase steadily.