I’ve been trying to update my SMTP servers to get better scores on Internet.nl. I’ve got the Microsoft 365 servers up to 100% now that they support DANE and DNSSEC. Still working on figuring out the Dovecot/Postfix servers though as it involves updating a TLSA record whenever the TLS certificates change.
Should nine.testrun.org and other chatmail relays implement DANE and get a 100% up to date score on the internet.nl tests? Email test: nine.testrun.org