[CentOS] TLS for all CentOS websites but not for smtp?

Wed Aug 19 19:00:10 UTC 2015
Leon Fauster <leonfauster at googlemail.com>

Am 19.08.2015 um 20:02 schrieb Ned Slider <ned at unixmail.co.uk>:
> 
> 
> On 19/08/15 17:50, Alice Wonder wrote:
>> 
>> 
>> On 08/19/2015 09:24 AM, Kai Bojens wrote:
>>> On 19-08-15 08:30:27, Alice Wonder wrote:
>>> 
>>> 
>>> DANE exists and mail servers like postfix support this. My logfiles
>>> show me that mail.centos.org delivers straight to me without any
>>> servers along the way.
>> 
>> DANE just pins the certificate.
>> 
>>> 
>>> 
>>> Encryption ensures that third parties simply cannot follow their "collect
>>> all" strategy.
>> 
>> That's a fair point.
> 
> But it's a public mailing list??
> 
> I can understand why you may want to send some mail encrypted point to
> point, but not when you then publish said mail on a publicly accessible
> archived list. It's just adding unnecessary overhead.

centos.org's MX is for sure not only for mailing lists ...

--
LF