On Tue, Aug 22, 2017 at 09:21:33AM -0700, yodel...@yepmail.net wrote: > The reason that I'm asking is that I'd like to set my inbound > policy =may by default, but for specific servers (that I may > be working or warring with) sending email to me I want to > force policy =encrypt. > > For infrequent one offs like that, even if I could specify a > few sending hosts, by hostname &/or even IP, to force inbound > TLS =encrypt policy it'd be useful.
See reject_plaintext_session, and in the case as you described, check_client_access: http://www.postfix.org/postconf.5.html#reject_plaintext_session http://www.postfix.org/postconf.5.html#check_client_access http://www.postfix.org/access.5.html -- http://rob0.nodns4.us/ Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
