dragonfly mail agent (dma) no tls by default

Reply: Panayotis Manganaris : "Re: dragonfly mail agent (dma) no tls by default"
Reply: Alexander Burke : "Re: dragonfly mail agent (dma) no tls by default"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Paul Eskello <paul.eskello_at_gmail.com>
Date: Sun, 24 Nov 2024 17:32:04 UTC

Hi gang (m/f/x),

Today I accidentally discovered my mailhub did not use tls sending outbound
email, for some mail. It turned out my old procmail uses sendmail which is
now dma, since I upgraded to freebsd 14.

I enabled SECURETRANSFER and STARTTLS in /etc/dma.conf. Done. :-) After
thinking about it, I presume I missed a HEADS UP, since all is well
documented in https://docs.freebsd.org/en/books/handbook/mail/ . I
scribbled some lines to my upgrade checklist.

But then I started to wonder: why is tls (yeah well, starttls) disabled by
default? Isn't that too conservative in soon-to-be 2025?

P