On Fri, 30 Jan 2026 14:53:49 -0500 (EST) Wietse Venema via Postfix-users <[email protected]> wrote:
> Jim Seymour via Postfix-users: > > On Fri, 30 Jan 2026 13:43:40 -0500 (EST) > > Wietse Venema via Postfix-users <[email protected]> wrote: > > > > > Jim Seymour via Postfix-users: > > > > Hi Wietse, > > > > > > > > I presume that if tls=none there will be no policies following > > > > that, as there will (?) be with the other security levels? > > > > > > Depending on the requiretls policy, Postfix will log > > > > > > tls=none/!requiretls:noencryption > > > 'Enforce' or 'opportunistic+starttls' policy violation. No > > > connection was made because the TLS security policy disabled > > > encryption. > > > > Ok. Let me put it another way: Will *all* security levels > > *always* be followed by one-or-more policies? > > There will be requiretls=mumble logging only when a mesage > requested REQUIRETLS. And that can happen only when Postfix is > configured to support REQUIRETLS. > > I expect that the same will be the case for other tls-dependent > feartures. Hmmm... I'm not certain I'm being clear. Or I'm just slow today. If I snag "tls=..." will the level *always* be followed by one-or-more policies, or might levels be found in the logs without policies? E.g.: Am I going to ever see: ... delays=0.5/0/0/0.01, tls=blurfl, dsn=2.0.0, ... ? And, if so, will their be a trailing ":"? E.g.: ... delays=0.5/0/0/0.01, tls=blurfl:, dsn=2.0.0, ... ? Thanks, Jim -- Note: My mail server employs *very* aggressive anti-spam filtering. If you reply to this email and your email is rejected, please accept my apologies and let me know via my web form at <http://jimsun.LinxNet.com/contact/scform.php>. _______________________________________________ Postfix-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
