MTA-STS Record Checker

Daily Usage: 0 / 5
Remaining Uses: 5

Frequently Asked Questions

The MTA-STS Check Tool is an MTA-STS validator that helps verify your domain’s MTA Strict Transport Security (MTA-STS) settings. This tool performs an MTA-STS lookup to check DNS TXT records, including the MTA-STS TXT record, TLS reporting, and other configurations to ensure your email servers support secure SMTP TLS connections. By validating these settings, the tool protects your email communications from interception and downgrade attacks during SMTP connections.
MTA-STS, or Mail Transfer Agent Strict Transport Security, enhances email security by enforcing encrypted SMTP connections (SMTP TLS) when email is sent to your domain. By setting up MTA-STS DNS and MTA-STS TXT records, you ensure that SMTP connections to your email servers are secure, protecting against unauthorized access and reducing the risk of email interception.
The MTA-STS Check Tool validates several key elements, including your domain's MTA-STS DNS and MTA-STS TXT record, the policy file on your server, and MX record configurations. It ensures that your domain’s email servers are set up to support secure SMTP TLS connections and comply with MTA-STS standards, making it an effective MTA-STS validator for enhancing email security.
To set up MTA-STS, you need to publish an MTA-STS TXT record in your DNS, defining the policy mode (e.g., enforce, testing, or none) and specifying the policy file location. Additionally, ensure your email servers support SMTP TLS to secure all SMTP connections. Use our MTA-STS Check Tool to perform an MTA-STS lookup and verify that your setup complies with MTA-STS requirements.
An MTA-STS TXT record is a DNS entry that specifies your domain’s MTA-STS policy settings. This record informs other email servers that your domain requires secure SMTP connections via SMTP TLS and directs them to the MTA-STS policy file. The MTA-STS Check Tool can validate the presence and correctness of this record, helping you maintain a secure email environment.
TLS reporting provides feedback on any issues with encrypted email connections. If other email servers encounter problems establishing secure SMTP connections with your domain, TLS reports help identify and resolve these issues. Our MTA-STS Check Tool includes TLS reporting, giving you visibility into potential security gaps in your email transmissions.
Unlike protocols like SPF and DKIM, which verify the sender’s identity and email content integrity, MTA-STS focuses on secure email transmission by enforcing SMTP TLS connections. MTA-STS requires that email servers use TLS encryption for SMTP connections, helping to prevent man-in-the-middle attacks and ensuring that emails sent to your domain are transmitted securely.