From 347dae1f84c5533e36591823b5ee69e94a9ffaac Mon Sep 17 00:00:00 2001
From: missytake <missytake@systemli.org>
Date: Mon, 13 Nov 2023 18:38:33 +0100
Subject: [PATCH] MTA-STS: CNAME doesn't work, it needs to be A and AAAA

---
 scripts/generate-dns-zone.sh | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/scripts/generate-dns-zone.sh b/scripts/generate-dns-zone.sh
index 02781b85..b4657b20 100755
--- a/scripts/generate-dns-zone.sh
+++ b/scripts/generate-dns-zone.sh
@@ -18,7 +18,8 @@ _imap._tcp.$CHATMAIL_SERVER.        SRV 0 1 143 $CHATMAIL_SERVER.
 _imaps._tcp.$CHATMAIL_SERVER.       SRV 0 1 993 $CHATMAIL_SERVER.
 $CHATMAIL_DOMAIN. IN CAA 128 issue "letsencrypt.org;accounturi=$ACME_ACCOUNT_URL"
 _mta-sts.$CHATMAIL_DOMAIN. IN TXT "v=STSv1; id=$(date -u '+%Y%m%d%H%M')"
-_mta-sts.$CHATMAIL_SERVER. IN CNAME $CHATMAIL_SERVER.
+_mta-sts.$CHATMAIL_SERVER. IN A $(dig +short $CHATMAIL_SERVER)
+_mta-sts.$CHATMAIL_SERVER. IN AAAA $(dig AAAA +short $CHATMAIL_SERVER)
 _smtp._tls.$CHATMAIL_SERVER. IN TXT "v=TLSRPTv1;rua=mailto:$EMAIL"
 EOF
 if [ "$CHATMAIL_DOMAIN" != "$CHATMAIL_SERVER" ]; then