On 07.12.22 12:28, Alex wrote:
smtp_tls_security_level = may smtpd_tls_security_level = may smtp_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1,!TLSv1.1 smtp_tls_protocols = !SSLv2,!SSLv3,!TLSv1,!TLSv1.1
so, you don't enforce TLS on a server-server communication (correct), but you disable tlsv1 and tlsv1.1 protocols.
This means, if you communicate with older server supporting up to TLS 1.1 or 1.0, communication will be unencrypted.
This does not make much sense - tls1.0 is better than plaintext. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Linux IS user friendly, it's just selective who its friends are...
