LuKreme wrote, at 03/04/2009 09:25 PM: > On 4-Mar-2009, at 19:12, Jorey Bump wrote: >> LuKreme wrote, at 03/04/2009 05:24 PM: >>> On 4-Mar-2009, at 14:33, Jorey Bump wrote: >>>> smtpd_tls_security_level should be used instead. >>> >>> Not if you don't want to force TLS on the submission port it shouldn't. >> >> The context is irrelevant. > > Of course the context is relevant since the original poster did not want > TLS *AT ALL* on the submission port. Which syntax is right for enabling > a feature he DOESN'T WANT is silliness.
Please read postconf(5). The recommended syntax for disabling TLS is: smtpd_tls_security_level=none The deprecated syntax is: smtpd_enforce_tls=no The OP was using both parameters with conflicting values: -o smtpd_tls_security_level=encrypt -o smtpd_enforce_tls=no He solved his original problem by removing the recommended parameter and leaving the deprecated one. In this case, he should have removed smtpd_enforce_tls and set smtpd_tls_security_level appropriately. It is not silliness to advise him to use the recommended syntax. Nor is it inappropriate to point out the pitfalls of the proposed setting, especially when he asked for suggestions.
