On 02/22/20 12:55, Søren Aurehøj wrote:
Hi Misc

I am using OpenSMTPD 6.6.0 on OpenBSD 6.6 stable

Currently I’m using the tls-require option in order to get mandatory TLS on outgoing mail, but with that follows the normal time-out values regarding bounce intervals. Because of greylisting, I’m not sure that adjusting these time-out values is the best way around this problem.

I have tested the scenario with a mailserver which is unable to use TLS, by sending mail to mailnesia.com <http://mailnesia.com>. This gives the expected result - "mta event=error reason=TLS required but not supported by remote host” in the maillog.

My mailserver recognizes when it is unable to continue the delivery due to a configuration setting on my mailserver. But instead of bouncing the mail immediately, it is queued anyway for later delivery.

Is it possible to enforce outgoing mail to always use TLS - and bounce more or less immediately, if the sending mailserver registers that the receiving mailserver is unable to meet our requirements regarding TLS?

Kind regards

Søren Aurehøj

I guess you could try adding to smtpd.conf:

bounce warn-interval 1s


Reply via email to