The email received, which claims to be from researchers at Virginia Tech and the Max Planck Institute, mentions a supposed issue with the MTA-STS (Mail Transfer Agent Strict Transport Security) DNS records. Specifically, the email claims that the domain’s _mta-sts TXT record has an "invalid id according to the grammar specified in the standard." However, a review of RFC 8461—the official standard for MTA-STS—reveals that there are no strict syntax or formatting rules for the id field in the MTA-STS record beyond its requirement to be unique with each policy update. This id parameter is used solely to notify mail servers of policy changes, and its value can be any arbitrary string, including a UUID, with no enforced format or "grammar."
id is incorrect according to RFC 8461, suggesting the sender may be attempting to create artificial urgency or concern.stsalerts.org, a domain that is unrelated to Virginia Tech or the Max Planck Institute, which would typically use their official domains for communication.stsalerts.org shows it was created on October 12, 2024, just weeks before the email was sent. This recent creation date is atypical for legitimate research or academic projects, which typically use established domains.Based on these observations, this email is likely intended to elicit engagement through deceptive language, and the unverified links may serve an unknown purpose. If you received similar and came here via search, avoid any interaction with the sender and refrain from clicking any links. If further confirmation is necessary, recommend contacting Virginia Tech or the Max Planck Institute directly through their official channels to inquire about this supposed study.
Hello,
We are a group of security researchers from Virginia Tech and the Max Planck Institute for Informatics currently conducting a study on MTA-STS (Mail Transfer Agent Strict Transport Security) configurations across various domains.
During our most recent scan on September 29th, 2024, we identified potential issue(s) with your domain analmunchkin.com. Specifically, we encountered the following error(s):
We are reaching out as you may not be aware of this issue. Addressing these issue(s) is important as it may impact how emails are delivered for your domain.
Please let us know if you have already fixed your issue or you believe your domain is properly configured and we have an issue in our scans, which we can fix. Feel free to reach out to us by replying to this email address if you need any other additional info or assistance.
We would also like to learn if our message was helpful; Please let us know by clicking the corresponding link below:
Yes: https://www.stsalerts.org/32f962cc2eX/yes
No: https://www.stsalerts.org/32f962cc2eX/no
We are just storing whether you found our message to be helpful to give us insights into the usefulness of notifications for issues like the one we reported. We will consider that information when assessing whether we will send such notifications in the future.
Thanks.
Md. Ishtiaq Ashiq, PhD Student, Virginia Tech
Taejoong (Tijay) Chung, Assistant Professor, Virginia Tech