Fiona Hines:
> I understand now what you are referring to but you were assuming
> that I was using STARTTLS, which was my mistake for not mentioning
> it.? I'm not using STARTTLS.? The connection is encrypted from the
> beginning of the transaction.?
Let's do one step back.
Web clients/servers implement TLS (and some use SNI)
SMTP client/servers implement TLS but no-one uses SNI.
If you want to make the case that Postfix should implement SNI,
then you need to demonstrate that this is actually support by SMTP
clients and servers in existence.
> [In SMTP] STARTTLS was created as part of the
> standards for e-mail because SNI didn't exist.?
Sorry, that statement is completely counter to any current SMTP
protocol standard documents. For example, the SMTPS service was
deprecated years ago. The standard requires plaintext negotiation
before the client/server can engage in TLS.
Wietse
