if ever there's a problem with your STARTTLS support, nobody will be able to send you email alerting you to the problem.
hm. that's the 'TLS is broken' case that i hadn't considered. somewhat mitigated in that i have have other channels for such notifications , but ... that's a good point.
And of course you might some day miss an important time-senstive message you might regret not receiving.
this it the one i'm not sure i care so much about.
I've been unable to send DANE survey notices to some domains with this policy, when the domain (I hope inadvertently) no longer offers STARTTLS, or STARTTLS is offered but fails. The problem is not just theoretical.
i do run an 'out of band' instance of your dane check script that notifies via other means, and should catch these ... but, again -- yup. _______________________________________________ Postfix-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
