"Because you sign your own Postfix public key certificate, you get TLS encryption but no TLS authentication." [0]
Could you explain the above? Does "TLS encryption" mean that all connections between my client machine and my server machine (and all data e.g. passwords, emails) will be encrypted? Does "TLS authentication" mean that it will be impossible to check the root cert because it's not issued by a recognized CA? AFAICT, it's not the same thing as SASL. The latter is used to determine who is allowed to access the server and the former is used to check that you're connecting to the right server. Is this correct? [0] http://www.postfix.org/TLS_README.html#quick-start
