On Fri, 6 Sep 2019, Reio Remma wrote:
Does the Received check only check the last untrusted relay?
No, the named header checks test all the headers having that name (presuming there are multiple present).
If you want to verify that TLS was used on the connection into your infrastructure, you're going to want to include a match on your MTA name in the header.
-- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- Are you a mildly tech-literate politico horrified by the level of ignorance demonstrated by lawmakers gearing up to regulate online technology they don't even begin to grasp? Cool. Now you have a tiny glimpse into a day in the life of a gun owner. -- Sean Davis ----------------------------------------------------------------------- 11 days until the 232nd anniversary of the signing of the U.S. Constitution
