Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 24 Nov 2024 18:32:04 +0100
From:      Paul Eskello <paul.eskello@gmail.com>
To:        freebsd-questions@freebsd.org
Subject:   dragonfly mail agent (dma) no tls by default
Message-ID:  <CAAtiVbVBO6POVVHYF8tT8cJ=bUF%2BOO3RcBAvvuKPfVvc-PPEKg@mail.gmail.com>
next in thread | raw e-mail | index | archive | help 
--0000000000004a21860627abff24
Content-Type: text/plain; charset="UTF-8"

Hi gang (m/f/x),

Today I accidentally discovered my mailhub did not use tls sending outbound
email, for some mail. It turned out my old procmail uses sendmail which is
now dma, since I upgraded to freebsd 14.

I enabled SECURETRANSFER and STARTTLS in /etc/dma.conf. Done. :-) After
thinking about it, I presume I missed a HEADS UP, since all is well
documented in https://docs.freebsd.org/en/books/handbook/mail/ . I
scribbled some lines to my upgrade checklist.

But then I started to wonder: why is tls (yeah well, starttls) disabled by
default? Isn't that too conservative in soon-to-be 2025?

P

--0000000000004a21860627abff24
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">Hi gang (m/f/x),<div><br></div><div>Today I accidentally d=
iscovered my mailhub did not use tls sending outbound email, for some mail.=
 It turned out my old procmail uses sendmail which is now dma, since I upgr=
aded to freebsd 14.=C2=A0</div><div><br></div><div>I enabled SECURETRANSFER=
 and STARTTLS in /etc/dma.conf. Done. :-) After thinking about it, I presum=
e I missed a HEADS UP, since all is well documented in=C2=A0<a href=3D"http=
s://docs.freebsd.org/en/books/handbook/mail/">https://docs.freebsd.org/en/b=
ooks/handbook/mail/</a> . I scribbled some lines to my upgrade checklist.</=
div><div><br></div><div>But then I started to wonder: why is tls (yeah well=
, starttls) disabled by default? Isn&#39;t that too conservative in soon-to=
-be 2025?</div><div><br></div><div>P</div></div>

--0000000000004a21860627abff24--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAAtiVbVBO6POVVHYF8tT8cJ=bUF%2BOO3RcBAvvuKPfVvc-PPEKg>