On 02/25/2011 09:02 AM, Nicolas Michel wrote: > Hello, > > I was asking myself about the kind of connection used by a MTA to > contact another one. > For exemple, I know that we can setup in a MUA an SSL (or TLS) > connection when configuring the SMTP connection. So the connection > between the MUA and the MTA is encrypted. > > But can we configure postfix in some way to ask by default an encrypted > connection when sending mail to others MTA? Or maybe it already do it by > default? > > So we may have something like that : > > MUA -----------> MTA -----------> MTA ------------> MUA > encrypted encrypted encrypted > > I know we can't guarantee that the entire flow will be encrypted because > we only have control on our MTA. > > But is it possible?
If the other MTAs are not under your control, you cannot enforce TLS between the other MTAs. You can only enforce TLS between the MTA you control and first MTA it connects to. After that you are no longer in control. Kind regards, Martijn Brinkers
