[pmg-devel] [PATCH pmg-docs 3/3] pmgconfig: Explain new TLS inbound policy configuration
Christoph Heiss
c.heiss at proxmox.com
Thu Mar 9 11:18:46 CET 2023
Signed-off-by: Christoph Heiss <c.heiss at proxmox.com>
---
pmgconfig.adoc | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/pmgconfig.adoc b/pmgconfig.adoc
index fea26db..22baef3 100644
--- a/pmgconfig.adoc
+++ b/pmgconfig.adoc
@@ -97,6 +97,10 @@ Stores your subscription key and status.
TLS policy for outbound connections.
+`/etc/pmg/tls_inbound_domains`::
+
+TLS policy for inbound connections.
+
`/etc/pmg/transports`::
Message delivery transport setup.
@@ -495,6 +499,10 @@ This can be used if you need to prevent email delivery without
encryption, or to work around a broken 'STARTTLS' ESMTP implementation. See
{postfix_tls_readme} for details on the supported policies.
+Additionally, TLS can also be enforced on incoming connections for specific
+sender domains by creating a TLS inbound policy. Mails with matching domains
+must use encrypted SMTP session, otherwise they are rejected.
+
Enable TLS logging::
To get additional information about SMTP TLS activity, you can enable
--
2.39.2
More information about the pmg-devel
mailing list