DNSSEC & DANE is down for kurzepost.de, trashmail.com, all domains. Man in the middle attack?
Posted: 02 Dec 2020, 21:29
Hello,
My email provider rejected to deliver to kurzepost.de with warning " non DNSSEC destination".
Further feedback from a supporter of email provider: It seems that I communicated to this destination via DANE standard but at the moment DNSSEC & DANE is not supportet by this destination, which can mean a Man-in-the-Middle-Attack or just a wrong server setting and I should get in contact with the team of the domain.
UPDATE: 13.12.2020 checked most domains of trashmail and changed title.
Dane test fails for all domains of trashmail I tested:
https://dane.sys4.de/smtp/kurzepost.de -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/trashmail.com -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/wegwerfmail.de -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/0box.eu -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/[secret domain name] -> DNSSEC: Insecure Domain.
My email provider rejected to deliver to kurzepost.de with warning " non DNSSEC destination".
Further feedback from a supporter of email provider: It seems that I communicated to this destination via DANE standard but at the moment DNSSEC & DANE is not supportet by this destination, which can mean a Man-in-the-Middle-Attack or just a wrong server setting and I should get in contact with the team of the domain.
UPDATE: 13.12.2020 checked most domains of trashmail and changed title.
Dane test fails for all domains of trashmail I tested:
https://dane.sys4.de/smtp/kurzepost.de -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/trashmail.com -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/wegwerfmail.de -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/0box.eu -> DNSSEC: Insecure Domain.
https://dane.sys4.de/smtp/[secret domain name] -> DNSSEC: Insecure Domain.