Domain & DNS Check n°32 / 120

MTA-STS (email encrypted in transit)

MTA-STS (Mail Transfer Agent Strict Transport Security) is a standard that enforces TLS encryption for inbound emails to your domain. Withou…

Analyse my site for free
← All checks
How it works

How TheSiteFuse checks "MTA-STS (email encrypted in transit)"

MTA-STS (Mail Transfer Agent Strict Transport Security) is a standard that enforces TLS encryption for inbound emails to your domain. Without MTA-STS, an attacker on the network path can force email servers to send messages in the clear (TLS downgrade attack). The _mta-sts TXT record publishes the policy and security policy URL.

Why it matters

Real-world impact of "MTA-STS (email encrypted in transit)"

MTA-STS protects the privacy of inbound emails. Without it, malicious actors between two email servers can read messages in transit. While less well-known than SPF/DKIM/DMARC, it completes the email security stack and is recommended by modern RFCs.

Does your site pass this check?

Run the free full audit (120 checks) and instantly discover what needs fixing.

Previous BIMI record Next TLS-RPT (email TLS reports)

Other Domain & DNS checks

Valid A/AAAA record
Domain expiration
MX records
SPF record
Continue with Google
or