On 2021-07-28 11:20:57 -0400, Wietse Venema wrote:
> Vincent Lefevre:
> > I have also noticed that on my server, I had "smtpd_use_tls = yes"
> > from old configuration. But after removing it, the postconf output
> > is changed to
> >
> > smtpd_use_tls = no
> >
> > Is this OK? Shouldn't obsolete parameters be dropped from the postconf
> > output if not explicitly set by the user, in order to avoid confusion?
>
> The default value is:
>
> smtpd_use_tls = no
>
> So when you delete smtpd_use_tls from main.cf, that is the value
> that "postconf" without "-n" will show.
>
> As documented (http://www.postfix.org/postconf.5.html#smtpd_use_tls),
>
> This feature is available in Postfix 2.2 and later. With Postfix 2.3
> and later use smtpd_tls_security_level instead.
OK, thanks. I see that the following asnwers by question:
smtpd_tls_security_level (default: empty)
[...] when a non-empty value is specified, this overrides the
obsolete parameters smtpd_use_tls and smtpd_enforce_tls.
So, since smtpd_tls_security_level is set, one can entirely ignore
the values of smtpd_use_tls and smtpd_enforce_tls.
--
Vincent Lefèvre <[email protected]> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
