On 11/06/13 22:56, Jeremy Stanley wrote: > On 2013-06-12 02:09:24 +0800 (+0800), Chow Loong Jin wrote: >> On Tue, Jun 11, 2013 at 08:01:58PM +0200, Daniel Pocock wrote: >>> >>> What about replacing SMTP? >> >> With what? > > With ESMTP, of course!
Something that doesn't have these limitations: http://tools.ietf.org/html/rfc2487#section-7 This is also relevant (not just for Postfix): http://www.postfix.org/TLS_README.html#client_tls_encrypt "Despite the potential for eliminating passive eavesdropping attacks, mandatory TLS encryption is not viable as a default security level for mail delivery to the public Internet. Most MX hosts do not support TLS at all, and some of those that do have broken implementations. On a host that delivers mail to the Internet, you should not configure mandatory TLS encryption as the default security level. " -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51b79b89.50...@pocock.com.au
