Hi Viktor.
Please check my original post. Your comments are on the postfix defaults
and not my current settings.
as for why I set these explicitly, I figured that more random bits means
more secure.
tls_random_bytes = 64
tls_daemon_random_bytes = 64
On 6/18/2024 9:56 PM, Viktor Dukhovni via Postfix-users wrote:
On Tue, Jun 18, 2024 at 04:15:33PM -0500, Cody Millard via Postfix-users wrote:
The defaults for those settings, as far as postfix is concerned, are as
follows:
smtpd_tls_auth_only = no
Why? Surely, "yes" is the better choice...
smtpd_tls_security_level =
Why empty? Surely "may" is the better choice, with suitable settings
for the certificate chain file and key file?
tls_random_bytes = 32
tls_daemon_random_bytes = 32
Why set these explicitly?
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
