Rob Maidment:
> Hello,
>
> I found an old thread where Viktor discussed the possibility of adding a
> FIPS-compliant mode:
>
> http://openssl.6102.n7.nabble.com/openssl-fips-1-2-questions-td22042.html
>
> But I can't find any way to configure Postfix to run in FIPS mode or any
> references in the source code so I guess it was never implemented. Is that
> correct? Any particular reason why not, or just lack of demand?
>
> I'd be happy to implement this myself. Would it be of general interest,
> i.e. something I could contribute to the project?
This would make Postfix easier to adopt for some users. I can only
hope that the changes can be kept within the Postfix libtls library
implementation, and that the library can own any additional main.cf
parameter settings.
Wietse
