On Sat, Dec 28, 2013 at 02:49:01PM -0500, Charles Marcus wrote:
> >If TLS_allowed insists on authentication, then having it on by
> >default is rather unwise. You may be able to unset this, but better
> >yet, use local submission rather than SMTP for vacation re-injection.
>
> Thanks Victor, but apparently this is actually a bug in Mail::Sender
> that only revealed itself when they changed the TLS default to true
> in 0.8.22.
>
> https://rt.cpan.org/Public/Bug/Display.html?id=85438
>
> I've temporarily disabled TLS in vacation.pl until it is fixed...
Why "temporarily"? It makes no sense to encrypt when sending to
127.0.0.1. You can't hide your plaintext from the O/S kernel.
Since the SMTP server is on port 25 only root can listen there, so
there is no reason to authenticate localhost:25 either.
--
Viktor.
