On Sun, Sep 25, 2022 at 10:24:23AM +0200, Lists Nethead wrote:
> > You probably do not need a dedicated port, just configure both an
> > RSA and a DSA certificate. Why you'd want to do this is a mystery,
> > an SMTP client that only supports DSS is rather a museum piece.
>
> Thank you Viktor for this explanation, really helpful, I will go with
> the iptables suggestion (or in our case pf). The OS is FreeBSD 12 so
> it should be doable.
Are you sure you need a dedicated port? Are you trying to avoid
configuring an additional DSA certificate on the default port?
In any case, your call. Yes remapping the client a non-default
port via a packet filter will give you enough rope.
--
Viktor.
