> On Mar 21, 2018, at 9:46 PM, Wietse Venema wrote:
>
> Just like the SMTP conection cache service, the tlsproxy service
> must not try to do clever things. It receives TLS requirements,
> does a TLS handshake, and returns TLS session properties that can
> later be used to create a connection c
Viktor Dukhovni:
> My point was that we'd still want a single proxy service, so it will need
> to be aware of the connecting transport name, and configure a suitable
> SSL_CTX when that name is seen for the first time. Session resumption
> would also need to convey the delivery agent name to tlsmg
On Wed, Mar 21, 2018 at 07:06:33PM +, Aaron Bennett wrote:
> I'm confused by the docs at
> http://www.postfix.org/postconf.5.html#always_add_missing_headers,
> to wit:
> "Always add (Resent-) From:, To:, Date: or
> Message-ID: headers when not present. Postfix
On Wed, Mar 21, 2018 at 05:10:00PM -0300, Rodrigo Cunha wrote:
> In my enviroment i write a script, this need sending mails from
> 3 accounts operad...@gmail.com, operad...@gmail.com and
> operad...@gmail.com; in my posftix file config i have configure
> only operad...@gmail.com and all mail out
Dears, i have a question.
In my enviroment i write a script, this need sending mails from 3 accounts
operad...@gmail.com, operad...@gmail.com and operad...@gmail.com; in my
posftix file config i have configure only operad...@gmail.com and all mail
output from operad...@gmail.com, setting default.
Hello,
I'm confused by the docs at
http://www.postfix.org/postconf.5.html#always_add_missing_headers, to wit:
"Always add (Resent-) From:, To:, Date: or Message-ID: headers
when not present. Postfix 2.6 and later add these headers only when clients
match the local_header_rewrite
> On Mar 21, 2018, at 10:48 AM, Wietse Venema wrote:
>
>> It is probably time to refactor the original Postfix 2.11 DANE internals
>> to look a lot more like the new DANE API in OpenSSL 1.1.0, which should
>> serialize a bit more easily.
>>
>> One complication is that we often have more than o
Viktor Dukhovni:
>
>
> > On Mar 20, 2018, at 11:34 PM, Wietse Venema wrote:
> >
> > 3) duplicate some TLSA logic in the tlsproxy daemon, if it can't
> > be factored out into a reusable library.
>
> It is probably time to refactor the original Postfix 2.11 DANE internals
> to look a lot more li
> On Mar 20, 2018, at 11:34 PM, Wietse Venema wrote:
>
> 3) duplicate some TLSA logic in the tlsproxy daemon, if it can't
> be factored out into a reusable library.
It is probably time to refactor the original Postfix 2.11 DANE internals
to look a lot more like the new DANE API in OpenSSL 1.1.
