> Very well. If adding the IP address to mynetworks provides sufficient > security against abuse of my server, I will leave it to that.
TCP and therefore SMTP is a bidirectional protocol (SYN-ACK and such). If you really estimate an attacker between you and the remote end, you will need *verified* TLS. For anything else IP based controls are fine.
