This is my understanding as well. This can be seen in the message source
if it has been sent from a server with TLS enabled to another server
with TLS.
It looks something like this i believe:
Received: from mail.example.com (mail.example.com
[xxx.xxx.xxx.xxx])(using TLSv1 with cipher ECDHE-RS
My understanding is that this happens automatically during the
negotiation phase if the remote server advertises TLS. At least this is
what I thought happened during a recent test. And I was certainly using
self-signed certificates. Actually very nice things begin to happen when
TLS is enabled.
On Sun, Aug 18, 2013 at 09:44:05AM +0200, li...@rhsoft.net wrote:
Better (leaving default values out):
scache = btree:${data_directory}/
smtp_tls_session_cache_database = ${scache}smtp_scache
smtp_tls_loglevel
On 08/18/2013 07:44 PM, li...@rhsoft.net wrote:
> smtp_use_tls= yes
Don't use this, it's obsolete and replaced by ...
> smtp_tls_security_level = may
... this.
Peter
Am 18.08.2013 07:32, schrieb Theodotos Andreou:
> I went through the TLS Readme but I couldn't find a clear answer to the
> following question:
surely
since postfix in this case is the *xclient* here you go
http://www.postfix.org/TLS_README.html#client_tls
> Can you configure postfix in a way
Hi guys,
I went through the TLS Readme but I couldn't find a clear answer to the
following question:
Can you configure postfix in a way that it connects using TLS to another
SMTP server, if TLS is available on the other side? For example if the
destination server supports TLS then postfix op
On Sat, Mar 19, 2011 at 03:37:11PM +0100, Raven wrote:
> > As for TLS, the security policy and certficate verification are tied to
> > the nexthop destination, not the recipient domain, if the two differ,
> > it is the nexthop destination that is used. This is documented, please
> > read the docum
On Wed, 2011-03-09 at 12:23 -0500, Victor Duchovni wrote:
> On Wed, Mar 09, 2011 at 01:36:46PM +0100, Raven wrote:
>
> > How can I apply this to $relayhost without having to list all local
> > domains in the transport map (as they are already listed in
> > $virtual_mailbox_domains)?
>
> Why are
On Wed, Mar 09, 2011 at 01:36:46PM +0100, Raven wrote:
> How can I apply this to $relayhost without having to list all local
> domains in the transport map (as they are already listed in
> $virtual_mailbox_domains)?
Why are you using virtual_mailbox_domains for addresses that are relayed
to anoth
On Tue, 2011-03-08 at 08:30 -0500, Victor Duchovni wrote:
> On Tue, Mar 08, 2011 at 01:38:28PM +0100, Raven wrote:
>
> > I would like to implement server-to-server TLS encryption between two
> > postfix instances I manage. One of the servers already has
> > TLS-capabilitie
On Tue, Mar 08, 2011 at 01:38:28PM +0100, Raven wrote:
> I would like to implement server-to-server TLS encryption between two
> postfix instances I manage. One of the servers already has
> TLS-capabilities but they are only used for SASL-AUTH clients.
>
> Where do I start to
Hi guys.
I would like to implement server-to-server TLS encryption between two
postfix instances I manage. One of the servers already has
TLS-capabilities but they are only used for SASL-AUTH clients.
Where do I start to have the entire stream between the servers to be
encrypted?
Thanks.
-RV
12 matches
Mail list logo
