On Mon, Jan 10, 2022 at 12:50:49PM +0100, Kveta Kladov wrote: > RFC 8996 deprecated TLS 1.0 and TLS 1.1 . > > Would you consider to update default values for > > smtp_tls_mandatory_protocols > smtp_tls_protocols, > smtpd_tls_mandatory_protocols > smtpd_tls_protocols > > so that TLS 1.0 and TLS 1.1 are disabled by default ?
There's no clear benefit to doing this with opportunistic TLS in SMTP.
--
Viktor.
