also sprach Victor Duchovni
[2010.08.30.2148 +0200]:
> Exactly as promised. Trusted != Verified. Trusted just means that
> the peer certificate signature is valid, but no actual validation
> of the peername took place.
Oh, I am sorry for this oversight on my side.
--
martin | http://madduck.ne
On Mon, Aug 30, 2010 at 09:42:29PM +0200, martin f krafft wrote:
> also sprach Victor Duchovni
> [2010.08.30.1604 +0200]:
> > > Due to some issues we've been having[0], I would like to have a more
> > > permanent means of confirmation that everything is in order.
> > > Specifically, I would like
also sprach Wietse Venema [2010.08.28.2324 +0200]:
> > Due to some issues we've been having[0], I would like to have a more
> > permanent means of confirmation that everything is in order.
> > Specifically, I would like to see in the logs when a security policy
> > was matched and applied. No matt
On Sat, Aug 28, 2010 at 07:02:48PM +0200, martin f krafft wrote:
> We are using $smtp_tls_policy_maps, in addition to
This is a feature of the Postfix SMTP *client*, that sends mail to
remote sites.
> Due to some issues we've been having[0], I would like to have a more
> permanent means of confi
martin f krafft:
Checking application/pgp-signature: FAILURE
-- Start of PGP signed section.
> Dear list,
>
> We are using $smtp_tls_policy_maps, in addition to
> $smtp_tls_security_level==may. Hence, the machine opportunistically
> uses TLS, while the policy ensures that certain destinations are
