In my main.cf I have"tls_ssl_options=NO_RENEGOTIATION" but when I use the mailserver verification option from https://internet.nl I get the report that TLS client-initiated renegotiation is not disabled and that therefore my postfix setup is prone to a DOS attack by means of CPU resource starvation.
1. Is this a false positive? 2. If it is indeed an issue, how to disable TLSA client-initiated renegotiation with postfix? Cheers
