Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
background , i want all outgoing mail encrypt if possible with fallback
to plain ( this should be may )
but to special domains in
smtp_tls_policy_maps
i want them always encrypt, with no fallback to plain ( mail
Am 15.03.2013 10:34, schrieb Robert Schetterer:
Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
background , i want all outgoing mail encrypt if possible with fallback
to plain ( this should be may )
but to special domains in
smtp_tls_policy_maps
Robert Schetterer:
Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
As a general rule, per-destination SMTP/TLS policy lookup results
override main.cf (and master.cf) settings.
You enable smtp_tls_policy_maps lookups by specifying a non-empty
value (there
Am 15.03.2013 13:11, schrieb Wietse Venema:
Robert Schetterer:
Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
As a general rule, per-destination SMTP/TLS policy lookup results
override main.cf (and master.cf) settings.
You enable smtp_tls_policy_maps
Robert Schetterer:
Am 15.03.2013 13:11, schrieb Wietse Venema:
Robert Schetterer:
Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
As a general rule, per-destination SMTP/TLS policy lookup results
override main.cf (and master.cf) settings.
I have a very similar issue, although my goal is not to negotiate TLS with
specific domains. I have:
main.cf
smtp_tls_security_level = may
smtp_tls_policy_maps = hash:/etc/postfix/tls_policy
/etc/postfix/tls_policy
example.com none
.example.com none
From the documentation I
Am 15.03.2013 15:06, schrieb Wietse Venema:
Robert Schetterer:
Am 15.03.2013 13:11, schrieb Wietse Venema:
Robert Schetterer:
Hi,
if i use
smtp_tls_security_level = may
is
smtp_tls_policy_maps honored ?
As a general rule, per-destination SMTP/TLS policy lookup results
override
On Fri, Mar 15, 2013 at 10:09:17AM -0400, JL Hill wrote:
/etc/postfix/tls_policy
example.com none
.example.com none
From the documentation I read, I thought postfix would not try negotiating
TLS with the example.com mail server, but it does.
(I posted this question
Thank you for your response. I assume I have something wrong, or I
misunderstood the documentation.
I have tested sending mail to example.com. A dig example.com MX gives:
example.com. 2546 IN MX 10 smtp1.example.com.
example.com. 2546 IN MX 20 smtp2.example.com.
example.com. 2546 IN MX 30
On Fri, Mar 15, 2013 at 04:09:47PM -0400, JL Hill wrote:
Thank you for your response. I assume I have something wrong, or I
misunderstood the documentation.
I have tested sending mail to example.com. A dig example.com MX gives:
example.com. 2546 IN MX 10 smtp1.example.com.
example.com.
I feel more confused. I had originally tested
example.com none
and it failed. I searched the documentation, and found .example.com to use
for subdomains, so I thought that would fit my case as the negotiation is
with smtp2.example.com, even though I am emailing john@example.com
When I
On Fri, Mar 15, 2013 at 05:19:30PM -0400, JL Hill wrote:
I feel more confused. I had originally tested
example.com none
and it failed. I searched the documentation, and found .example.com to use
for subdomains, so I thought that would fit my case as the negotiation is
with
My apologies, I grabbed the wrong snippet of log file (same host, different
server). Here is the entire connection log (I changed only the domain name
and xxx'd the ip address):
Mar 3 06:36:10 host postfix/smtp[4]: initializing the client-side TLS
engine
Mar 3 06:36:11 host
On Fri, Mar 15, 2013 at 07:20:24PM -0400, JL Hill wrote:
My apologies, I grabbed the wrong snippet of log file (same host, different
server). Here is the entire connection log (I changed only the domain name
and xxx'd the ip address):
No, don't apologize, in fact you grabbed exactly the right
14 matches
Mail list logo