Stalwart's resolver is doing its own DNSSEC validation that no resolver choice disables, and it's wrongly flagging the (legitimate, unsigned) NODATA AAAA as bogus

Disrupt · June 23, 2026, 7:11pm

Also reported in Not able to send emails to certain domains due to DNSSEC error and noted that 0.16.9 does not have the issue while 0.16.10 does.

Topic		Replies	Views
Stalwart-cli snapshot not working as expected Issues	2	21	June 15, 2026
Not able to send emails to certain domains due to DNSSEC error Issues	8	98	June 24, 2026
BUG: ERR_CERT_AUTHORITY_INVALID upon installation Issues	3	21	June 15, 2026
DNS over TLS Configuration Questions	8	68	May 28, 2026
Stalwart v0.16.6 released Announcements	0	188	May 20, 2026