I get under status checks the error message “MTA-STS policy is missing: STSFetchResult.NONE” for both mydomain . de and box. mydomain. de.
However, under “https: //mta-sts. mydomain .de /.well-known/mta-sts.txt” and “https: //mta-sts .box. mydomian .de /.well-known/mta-sts . txt” (I put in spaces because as a new user I am allowed only two url) I can access the relevant txt files without error.
Under esmtp.email/tools/mta-sts I get the following answers:
- MTA-STS TXT DNS response contains zero answers
- TLSRPT TXT DNS response contains zero answers
- DNS answer for MX record not protected with DNSSEC
- box. mydomian. de presented a valid TLS certificate
I use mail-in-a-box version v60.1 .
In the thread Digging into STSFetchResult.FETCH_ERROR I read that I should add a DNS-record like "
_smtp. _tls. your-domain TXT “v=TLSRPTv1; rua=reporting-address” in the external DNS.
Is this additional DNS-record really necessary? Main-in-a-box gives me the impression that I should indeed only do what it tells me to do. In external DNS, such an additional record is not given to me and it is not recommended. On the other hand, as I said, I get the above error message, so I think I should fix it. In fact, I would like to fix it. Or does the problem and its solution lie somewhere else?