On Oct 25, 2018, at 06:08, Thomas Bourdon <thomas.bour...@halpanet.org> wrote: > > My goal : All auth connections must be done with tlsv1.2 minimum. Others > connections can be done with tlsv1.0 minimum.
This is fine. Authentication port 25 is often simply opportunistic and does not imply identify, only securing the data transfer. You could even allow SSL an poet 25 as long as you force submission to your TLSv1.2 connection on 587 or 466. -- This is my signature. There are many like it, but this one is mine.