A.Schulze via Postfix-users:
> Am 21.12.25 um 21:13 schrieb Wietse Venema via Postfix-users:
> > A.Schulze via Postfix-users:
> >> # postconf -d compatibility_level mail_version lmtp_tls_security_level
> >> compatibility_level = 0
> >> mail_version = 3.11-20251219
> >> lmtp_tls_security_level = ${{$compatibility_level} <level {3.11} ? {} :
> >> {may}}
> >
> > "may" would be OK for type "inet:" destinations, but not for "unix:".
> >
> > Unfortunately, the lmtp_tls_security_level is configured separately
> > from the LMTP destination: lmtp_tls_security_level is set in main.cf
> > or master.cf, the other may be set with from xxx_transport,
> > transport_maps, or elsewhere.
>
> Hello,
>
> I read this as
>
> using postfix >= 3.11, I must set lmtp_tls_security_level=none
> IF lmtp is used over unix sockets
>
> that answers my question...
I'm about to finish the Postfix 3.11 stable release so things can
still be changed.
In addition to keeping the current behavior we can also
- Revert the default lmtp_tls_security_level change.
- Limit the scope of lmtp_tls_security_level to type "inet:" connections
and ignore the setting for type "unix".
- Something else.
I'd like to decide this soon.
Wietse
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
