On Wed, Aug 29, 2012 at 10:26:18AM -0600, Gilles Chehade wrote: > > [...] > > Log message: > > By default, it will use Blowfish in CBC mode with a different random IV for > each envelope and message. User provided key is expanded using sha256 but a > different cipher and digest may be specified in smtpd.conf > > Queue encryption is compatible with compression and if both options are set > it will do them in correct order and transparently. >
A quick note: I've tested it using various combinations of ciphers and digests, with and without compression, with and without randomization of IV (which I ultimately decided to always enable to make smtpd.conf simpler), so it should work just fine for you with no bad surprise. However, be cautious as this is new code, it has only been tested with a few hundred mails and if a bug triggers it may mean you lose mail. I still need testing though :-) -- Gilles Chehade https://www.poolp.org @poolpOrg
