Hm. Hardenize tells me "Email TLS ... not implemented or disabled", which I don't quite understand, given the following settings:
smtpd_tls_ask_ccert = yes smtpd_tls_auth_only = yes smtpd_tls_fingerprint_digest = sha256 smtpd_tls_dh512_param_file = /etc/ssl/private/dh512.pem smtpd_tls_dh1024_param_file = /etc/ssl/private/dh2048.pem smtpd_tls_CApath = ... smtpd_tls_cert_file = ... smtpd_tls_key_file = ... smtpd_tls_loglevel = 1 smtpd_tls_received_header = yes smtpd_tls_security_level = may So, who is confused, me or Hardenize? -Ralph
