Kevin Chadwick <ma1l1i...@yahoo.co.uk> writes:

> I maybe confused about the term for MTAs using ssl to deliver mail to
> me. I just feel wrong using tls for delivering mail to other servers or
> atleast a hop, without letting them do the same. 

Well, spamd never actually tries to deliver mail.  In a normal
scenario, the hosts that will talk to spamd are ones that have never
delivered mail to your site before (greylisting) or the ones we know
are trying to deliver spam (already blacklisted somewhere, greytrapped
etc).

I suppose the day may come eventually when spammers will only try to
deliver if the other side announces TLS available, but we're certainly
not there yet.  It's a lot more useful to keep it simple: set up your
real mail server with TLS and forget about complicating the path to
spamd.  After all, it's only the whitelisted hosts that will actually
need a secure connection.

- P
-- 
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.

Reply via email to