postfix-users October 2010 archive
Main Archive Page > Month Archives  > postfix-users archives
postfix-users: Re: Encrypt messages between 2 servers

Re: Encrypt messages between 2 servers

From: martijn.list <martijn.list_at_nospam>
Date: Sun Oct 24 2010 - 09:22:24 GMT
To: postfix-users@postfix.org

> Just use opportunistic TLS on both ends and go.

It depends on the requirements whether TLS is good enough. It's not
always possible to be 100% certain that the complete route is TLS
protected. All intermediate servers should protect the message with TLS
and this is something the sending server cannot enforce. For example if
you are using fallback SMTP servers hosted by some external company in
case of problems how can you be 100% certain that the email is TLS
protected?

If your requirements are such that you must be 100% certain that your
email is protected all the way, you should protect the message, not just
the channel.

Martijn