As people rely more on posttls-finger to troubleshoot TLS issues,
it is clear that posttls-finger needs to become an officially
supported tool.
For that, we need to document how posttls-finger expecatations
differ from Postfix SMTP client expectations (some of which the
SMTP client delegates to tlsproxy), doing a beter job than I did
in this week's email thread.
Perhaps the posttls-finger(1) manpage can summarize the differences
in default behaviors with the SMTP client (and features available
in only one of the two, such as client certificates).
A full mapping between posttls-finger and SMTP client settings may
be too much for a manpage (and manpages do not support tables if I
recall correctly). A full mapping may be more appropriate for a
"troubleshooting" section in the TLS_README.
Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
