Greetings,
We've had some trouble over the years with iOS clients not being able to
connect to our Postfix server until a reboot of the mobile client takes
place.
In trying to upstep our general security, we're trying to implement some
of the recommendations on this list:
https://access.redhat.com/articles/1468593
It seems like the bulk of this is in raising the encryption on SMTP
delivery.
One question I have is, if we implement some of these settings like,
tls_auth_only, or tls_mandatory_protocls to exclude SSLv2 and SSLv3 will
this break iOS (or any other) mobile operability?
Or, does anyone have any better general guidelines for hardening Postfix?
Thank you,
Asai
