[Kolab-devel] Fwd: Re: Add additional tls settings for postfix client side

Fabio Pietrosanti lists at pietrosanti.it
Wed Feb 15 10:20:00 CET 2006

Richard Bos wrote:
> In short: if encryption is necessary you make it mandantory, if it's nice
> to have but you can't enforce it you take it when it is offered but you
> don't rely on it.

My own email server which was running with a custom installation of
postfix ever used smtp_tls and i found that 30-35% of smtp server
negotiate tls connection.

Imho it should be enabled, it's just an "encrypt if you can" that, if
required, could be turned in "only encrypt!" with a single line of

So it would give users the ability to have as a standard feature the
"encryption whether possibile" and enable "full encryption" if the
policy require it commenting a single line of configuration file.

I agree in enabling it by default

More information about the devel mailing list