Tom Smyth wrote on 01/08/16 16:40:
Besides do we want to have a mail system that is so secure that a
large portion of legacy systems cant negotiate security and therefore
cant send mail to our servers...
I think options / enforced by default options like this could
seriously hurt adoption of openSMTPD
I think sacrificing security for adoption is a bad trade off and does
not align with the OpenBSD ecosystem. I believe "secure by default" and
"proactive security" do align with the OpenBSD ecosystem.
Read http://www.openbsd.org/security.html
"OpenBSD believes in strong security. Our aspiration is to be NUMBER ONE
in the industry for security (if we are not already there)."
I just wanted to say that @reyk and the devs working on httpd(8) made
the default protocol TLSv1.2 only. However, they also have a knob.
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
