Validates TLS-RPT for email security monitoring
Validates TLS-RPT (TLS Reporting) configuration for monitoring email security issues.
This checker validates TLS-RPT (TLS Reporting) configuration for monitoring email security issues. It checks:
TLS-RPT Record Presence: Verifies that a TXT record exists at _smtp._tls.domain
Valid TLS-RPT Version: Confirms the record starts with v=TLSRPTv1
Reporting URIs: Validates the rua (reporting URI aggregate) configuration
Record Format: Ensures the record follows the correct TLS-RPT format
The checker performs DNS TXT record lookups and validates TLS-RPT record syntax. Note that TLS-RPT is optional, so missing records result in warnings, not failures.
| Status | Condition | Test Logic | Description |
|---|---|---|---|
| SUCCESS | TLS-RPT properly configured | - TLS-RPT record exists with valid syntax - Record starts with v=TLSRPTv1 - Record contains rua= parameter - Record format is correct | Domain has properly configured TLS-RPT for email security monitoring |
| WARNING | TLS-RPT missing or has issues | - No TLS-RPT record found (optional) - TLS-RPT record exists but malformed - Record does not start with v=TLSRPTv1 - Record missing rua= parameter | TLS-RPT is optional; missing or misconfigured records result in warnings |
| FAIL | Never occurs | - This checker never returns FAIL status | TLS-RPT is optional and never causes failures |
| ERROR | Technical failure | - DNS lookup failed - Network connectivity issues - Invalid domain format | Technical error occurred during TLS-RPT validation |
If TLS-RPT is missing or misconfigured, the following risks apply:
No Security Monitoring: Lack of visibility into email transmission security issues
Undetected Attacks: Man-in-the-middle attacks may go unnoticed
Compliance Violations: Some industries require TLS-RPT for email security monitoring
Delayed Incident Response: Security issues may not be detected promptly
Trust Issues: Email providers may flag your domain as less secure
Regulatory Issues: Failure to monitor email security may violate regulations
Business Risk: Unmonitored email security issues may lead to data breaches
Reputation Damage: Lack of security monitoring may affect domain reputation
Add this checker to your monitoring setup and start identifying issues on your websites today.