Buypass not sending CAA violation reports (IODEF)
In the Buypass documentation on CAA, it says that Buypass will send reports via email in IODEF format when a CAA policy violation occurs:
Buypass uses iodef and will report certificate applications for which Buypass is not authorised by using the email address in the mailto: element in iodef.
The exact part that I am referencing is this page, right at the bottom of the "How CAA Works" section.
However, despite attempting to issue multiple Buypass certificates that are in violation of my domain's CAA policy, I have not received a CAA violation report.
The FQDN that I attempted to issue the certificates for is `test.jamiescaife.uk`, which has the following CAA policy (raw DNS records):
test.jamiescaife.uk. 120 IN CAA 0 issue ";" test.jamiescaife.uk. 120 IN CAA 0 iodef "mailto:email@example.com"
Please could anybody advise as to whether Buypass does actually support CAA violation reporting via email as is noted in the documentation?
Would it also be possible for an IODEF schema to be published, to make it easier for reports to be processed automatically?
I am carrying out research on CAA, and I was attracted to Buypass specifically because you are reportedly one of the very few CAs who send CAA violation reports.
Thanks for your help,
Hello. Sorry for the issue you are experiencing.
Initial survey in our systems shows that your requests on the 9th and 10th of February was denied on the basis of a not authorized CAA status.
Why you have not received a mail I can't currently answer, and I've forwarded this issue to the rest of the ACME team and flagged it as a prioritised issue.
Best regards Magnus