I was wondering is it actually advisable to use tls on smtp? When I tried it out with my self-signed certificates just to see if it's of any convenience to implement this feature I received the following response:
TLS required, but was not offered by host -or- we do not run TLS engine -or- certificate is not trusted on smtp_tls_security_level = encrypt -or- secure smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt when I tried the following: smtp_tls_security_level = may smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt it simply went through without giving any "feedback" or warnings. My understanding also is that it just wasn't secure / encrypted with this 'may' so that's why it went through OK. what about the rest of the settings of smtp_tls_cert_file = -and- smtp_tls_key_file = are they not required? Could anyone comment on the above, please? Many thanks! -- View this message in context: http://postfix.1071664.n5.nabble.com/Postfix-cannot-start-tls-handshake-failure-tp89684p89727.html Sent from the Postfix Users mailing list archive at Nabble.com.
