On Sat, Jan 08, 2022 at 03:20:58AM -0500, Viktor Dukhovni
wrote:
> On Sat, Jan 08, 2022 at 12:00:45PM +1100, raf wrote:
>
> > When reading the documentation on smtp_tls_security_level, I thought
> > dane-falling-back-to-encrypt seemed to be a missing option. But I
> > thought it would never be
On Sat, Jan 08, 2022 at 12:00:45PM +1100, raf wrote:
> When reading the documentation on smtp_tls_security_level, I thought
> dane-falling-back-to-encrypt seemed to be a missing option. But I
> thought it would never be used as a default, and for any non-default
> specific remote server, you're li
On Fri, Jan 07, 2022 at 07:28:32AM -0500, Viktor Dukhovni
wrote:
> On Fri, Jan 07, 2022 at 11:34:32AM +0100, Charlotte 🦝 Delenk wrote:
>
> > I was trying to harden my postfix configuration and was looking into
> > making TLS mandatory, as well as verifying the TLS Certificate using
> > DANE w
On 07.01.22 13:28, Viktor Dukhovni wrote:
On Fri, Jan 07, 2022 at 11:34:32AM +0100, Charlotte 🦝 Delenk wrote:
I was trying to harden my postfix configuration and was looking into
making TLS mandatory, as well as verifying the TLS Certificate using
DANE wherever possible.
TLS mandatory for del
On Fri, Jan 07, 2022 at 11:34:32AM +0100, Charlotte 🦝 Delenk wrote:
> I was trying to harden my postfix configuration and was looking into
> making TLS mandatory, as well as verifying the TLS Certificate using
> DANE wherever possible.
TLS mandatory for delivery to the world at large? Or is yo
Hi,
I was trying to harden my postfix configuration and was looking into
making TLS mandatory, as well as verifying the TLS Certificate using
DANE wherever possible.
According to the documentation of smtp_tls_security_level, you can
either set the value to "encrypt" for mandatory tls or "dan
