On Wed, May 14, 2025 at 11:24 AM Slavko via Exim-users <
exim-users@lists.exim.org> wrote:
> Dňa 14. 5. o 9:51 Odhiambo Washington via Exim-users napísal(a):
> > On Wed, May 14, 2025 at 1:41 AM Jeremy Harris via Exim-users <
> > exim-users@lists.exim.org> wrote:
> >
>
> > deny
> > condition = ${if and{ \
> > {!def:tls_in_cipher} \
> > {or{ \
> > {eq{$interface_port}{587}} \
> > {eq{$interface_port}{465}} \
> > }} \
> > }{yes}{no}}
> > message = TLS is required when submitting mail on this port
> (587/465)
> >
>
> Too complicated, the 465 port is always encrypted (by onconnect port),
> thus all you need is:
>
> deny
> condition = ${if eq{$interface_port}{587} }
> !encrypted = *
> message = All port 587 connections must use TLS
>
> regards
>
> --
> Slavko
>
Thanks, Slavko, for the enlightenment.
It works!
--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
In an Internet failure case, the #1 suspect is a constant: DNS.
"Oh, the cruft.", egrep -v '^$|^.*#' ¯\_(ツ)_/¯ :-)
[How to ask smart questions:
http://www.catb.org/~esr/faqs/smart-questions.html]
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscr...@lists.exim.org
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
