umber of capacity
controls, filtering for spoofed return addresses, etc. no longer apply.
I’ll note that MS appears fairly serious about depreciating anything other than
TLS 1.2 with “real” certs and I validate their cert and have them validate
mine. Of course, my email is flowing in the o
ostfix codebase.
Luckily I'm not your auditor, have no idea what standards you're trying
to meet, and so YMMV.
--Jon Radel
Network Infrastructure Lead
Folio Financial, Inc.
8180 Greensboro Drive, 8th Floor
McLean, VA 22102
(T) 703-245-4844
(M) 703-861-5128
(E) rad...@foliofinanci
s a bit with careful use of TLS. See
http://www.postfix.org/TLS_README.html#server_vrfy_client for details.
You should be able to configure things to allow access only from the
Exchange server and the certificate you configure on it. That is until
those untrusted people rummage around and steal