Only enable STARTTLS for public mail servers (!538) · Merge requests · Particify / Software Development / FOSS / ARSnova Server

Daniel Gerhardt requested to merge mail-no-starttls-for-sitelocal-net into master Oct 06, 2022

STARTTLS is only enabled if the mail server has a public IP address and implicit TLS is not enabled.

Internal mail servers usually use self-signed certificates which cannot be verified without a trust store. Implicit TLS can be used if encryption is required.

Only enable STARTTLS for public mail servers

Merge request reports