Sean McBride via Postfix-users:
> Hi all,
>
> I've been setting up a fresh postfix server, and I've really appreciated
> how great the docs are. In the spirit of making them even better, I'd
> like to share a comment/suggestion.
>
> If I correctly understand the messy history of port 465 vs 587, for
> submission port 587 with StartTLS was preferred, but now port 465 with
> implicit TLS is preferred (because it eliminates the possibility of
> downgrade attacks). And port 465 is now named `submissions` instead of
> `smtps`.
>
> I suggest therefore that the string `submissions` should appear
> somewhere in:
>
> http://www.postfix.org/TLS_README.html
>
> Similarly, though the string `465` appears, it's only in the context of
> the older obsolete `smtps` sense, for MTA to MTA communication.
Yes, this is a fine example of bitrot. I am updating TLS_README and
postconf(5). If there is an AUTOMATED tool that can check Postfix
documentation for conflicts with RFCs and best practices, then I'd
be interested.
Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
