So I am a little divided, On the one hand I think that port 25 is enough to transmit mails locally, on the other hand I think that an encryption would be better, especially on the dmz. Also, I have 20 servers that send logwatch locally and I don't see myself creating a tunnel for each of them. Samuel
Le jeu. 18 août 2022 à 17:55, Jaroslaw Rafa <r...@rafa.eu.org> a écrit : > Dnia 18.08.2022 o godz. 10:34:18 Demi Marie Obenour pisze: > > > > I recommend using client certificate authentication on port 465 instead. > > IP addresses are not a strong form of authentication unless one is using > > a secure VPN such as WireGuard. > > On an internal network, between one's own servers? > > > Also one should be encrypting traffic > > anyway as a matter of best practice. > > Use of port 25 (or any other port) does not exclude encryption. > -- > Regards, > Jaroslaw Rafa > r...@rafa.eu.org > -- > "In a million years, when kids go to school, they're gonna know: once there > was a Hushpuppy, and she lived with her daddy in the Bathtub." >
