Skip to content

foxcpp/mailsec-check

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
dns
dns
 
 
mtasts
mtasts
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
checks.go
checks.go
 
 
dane.go
dane.go
 
 
fcrdns.go
fcrdns.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
mtasts.go
mtasts.go
 
 
spf.go
spf.go
 
 

Repository files navigation

mailsec-check

Another utility to analyze state of deployment of security-related email protocols.

Compilation

Needs Go toolchain.

go get github.com/foxcpp/mailsec-check

Usage

mailsec-check example.org

Example

$ mailsec-check protonmail.com -- Source forgery protection [+] DKIM: _domainkey subdomain present; DNSSEC-signed; [+] SPF: present; strict; DNSSEC-signed; [+] DMARC: present; strict; DNSSEC-signed; -- TLS enforcement [+] MTA-STS: enforced; all MXs match policy; [+] DANE: present for all MXs; DNSSEC-signed; no validity check done; -- DNS consistency [+] FCrDNS: all MXs have forward-confirmed rDNS [+] DNSSEC: A/AAAA and MX records are signed; $ mailsec-check disroot.org -- Source forgery protection [+] DKIM: _domainkey subdomain present; DNSSEC-signed; [+] SPF: present; strict; DNSSEC-signed; [ ] DMARC: present; no-op; DNSSEC-signed; -- TLS enforcement [ ] MTA-STS: not enforced; all MXs match policy; [+] DANE: present for all MXs; DNSSEC-signed; no validity check done; -- DNS consistency [ ] FCrDNS: no MXs with forward-confirmed rDNS [+] DNSSEC: A/AAAA and MX records are signed;

About

Another utility to analyze state of deployment of security-related email protocols.

Topics

spf dkim dane dmarc email-security mta-sts

Resources

Readme

License

MIT license
Activity

Stars

68 stars

Watchers

9 watching

Forks

8 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages