> to (easy with e.g. Postfix header_checks): > > Require-TLS: NO > Subject: [insecure-delivery]: actual subject > > or (not easy with header_checks, but hides the subject tag): > > Require-TLS: NO > Subject: actual subject
I think leaving [insecure-delivery] in the subject is a feature of such a configuration, not a bug. It conveys important information about the delivery of the message. Of course, someone could add the [insecure-delivery] to the subject using an MTA that doesn't add Require-TLS, potentially fooling someone, but I don't offhand see any serious security consequences of being able to falsely claim your message was delivered insecurely, when it wasn't. -Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
