[Kolab-devel] Fwd: Re: Add additional tls settings for postfix client side
Fabio Pietrosanti
lists at pietrosanti.it
Wed Feb 15 10:20:00 CET 2006
Richard Bos wrote:
> In short: if encryption is necessary you make it mandantory, if it's nice
> to have but you can't enforce it you take it when it is offered but you
> don't rely on it.
>
My own email server which was running with a custom installation of
postfix ever used smtp_tls and i found that 30-35% of smtp server
negotiate tls connection.
Imho it should be enabled, it's just an "encrypt if you can" that, if
required, could be turned in "only encrypt!" with a single line of
configuration.
So it would give users the ability to have as a standard feature the
"encryption whether possibile" and enable "full encryption" if the
policy require it commenting a single line of configuration file.
I agree in enabling it by default
More information about the devel
mailing list