On Sat, Jun 08, 2013 at 01:17:22PM +1000, Nikolas Kallis wrote: > >For the general use case, just enable TLS as described in > >http://www.postfix.org/TLS_README.html#quick-start > >then set both smtp_tls_security_level and smtpd_tls_security_level > >to "may" and TLS will just start working. > > Its not true that there is no benefit using a SSL certificate from a > CA. Some MTA's will reject connecting to a remote host if it cannot > validate its security credentials from a CA.
You might think so, but that does not make it a fact. https://tools.ietf.org/html/draft-dukhovni-smtp-opportunistic-tls-00#section-1.2 -- Viktor.
