In 2015, Viktor wrote an email detailing the current recommended TLS
settings[0].
Now that we are three years later, are these still the best settings? Is
there something better we can be recommending?
If anything, I think that 'smtp_tls_security_level = may' should be
recommended (it actually should be *default*), but I'm wondering about
the other recommended ciphers/protocols/excludes etc. as well.
thanks!
--
micah
0.
http://postfix.1071664.n5.nabble.com/Update-to-recommended-TLS-settings-td78583.html
