install/mailsystem
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

install_postfix_advanced.sh: some minor changes in writing 'main.cf'.

Browse Source
This commit is contained in:
Christoph 2024-10-01 00:20:04 +02:00
parent f6482795c4
commit ad1d844b54
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
install_postfix_advanced.sh
View File

@ -1747,7 +1747,6 @@ cat <<EOF >> /etc/postfix/main.cf
# ============ TLS parameters ============ # ============ TLS parameters ============
# What mechanisms the Postfix SMTP client uses to look up a host's IP address. # What mechanisms the Postfix SMTP client uses to look up a host's IP address.
# This parameter is ignored when DNS lookups are disabled (see: disable_dns_lookups # This parameter is ignored when DNS lookups are disabled (see: disable_dns_lookups
# and smtp_dns_support_level). The "dns" mechanism is always tried before "native" # and smtp_dns_support_level). The "dns" mechanism is always tried before "native"
@ -1911,6 +1910,7 @@ smtp_tls_loglevel = 1
smtpd_tls_cert_file = $_TLS_CERT_FILE smtpd_tls_cert_file = $_TLS_CERT_FILE
smtpd_tls_key_file = $_TLS_KEY_FILE smtpd_tls_key_file = $_TLS_KEY_FILE
## - File with DH parameters that the Postfix SMTP server should use with EDH ciphers. ## - File with DH parameters that the Postfix SMTP server should use with EDH ciphers.
## - ## -
## - Dont't forget to create it, e.g with openssl: ## - Dont't forget to create it, e.g with openssl:
@ -1998,7 +1998,7 @@ smtp_tls_mandatory_protocols = >=TLSv1.2
# Use EECDH with approximately 192 bits of security at computational cost that is # Use EECDH with approximately 192 bits of security at computational cost that is
# approximately twice as high as 128 bit strength ECC. # approximately twice as high as 128 bit strength ECC.
# #
smtpd_tls_eecdh_grade = auto #smtpd_tls_eecdh_grade = auto
# With SSLv3 and later, use the Postfix SMTP server's cipher preference order instead # With SSLv3 and later, use the Postfix SMTP server's cipher preference order instead