On 2026-04-03 at 09:55:14 UTC-0400 (Fri, 3 Apr 2026 15:55:14 +0200)
Paul van der Vlis via Postfix-users <[email protected]>
is rumored to have said:
Some people even say that I should enable TLS 1.0.
Which is:
1. Not unsafe in the context of SMTP if you exclude weak ciphers.
2. Supported by some mail servers which STILL cannot successfully
negotiate anything more recent.
The result of that is that if you REQUIRE encryption but DEMAND
TLSv>=1.2, you stand a real chance of losing some mail entirely. That is
much less likely for someone in NL who mostly interacts with others with
.nl domains, because of the push from government, but it's not globally
true.
All strategies for securing email are imperfect in the real world where
there's no way to require people to keep up with the latest security
fad.
--
Bill Cole
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
