Merge #1902
1902: Make smtp_tls_policy_maps easily configurable r=mergify[bot] a=nextgens ## What type of PR? Feature ## What does this PR do? - Make smtp_tls_policy_maps easily configurable. This is useful to force TLS verification of specific destinations (or relays). We should probably discuss what's on the list by default. I have found a top100 list online, ran it through a script to check all the records and found 90 destinations we could use. - disable TLS session tickets (this reduces the PFS window from 1day to 1h) - enable system CAs by default (to allow for OUTBOUND_TLS_LEVEL above encrypt without additional overrides) ### Related issue(s) - closes #1558 - #707 ## Prerequistes Before we can consider review and merge, please make sure the following list is done and checked. If an entry in not applicable, you can check it or remove it from the list. - [x] In case of feature or enhancement: documentation updated accordingly - [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file. Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>master
commit
7efce99769
@ -0,0 +1 @@
|
||||
Make smtp_tls_policy_maps easily configurable
|
Loading…
Reference in New Issue