How to restrict access to EXIM to clients with STARTTLS? I want to be able to drop non-TLS connections.
Current setup:
tls_on_connect_ports = 465
tls_advertise_hosts = *
tls_certificate = /some/file/name
tls_privatekey = /some/file/name
How to restrict access to EXIM to clients with STARTTLS? I want to be able to drop non-TLS connections.
Current setup:
tls_on_connect_ports = 465
tls_advertise_hosts = *
tls_certificate = /some/file/name
tls_privatekey = /some/file/name
You have to add the next rule to the RCPT ACL:
acl_rcpt:
deny ! hosts = : +relay_from_hosts
! authenticated = *
. . . .
That rule deny submission from any non-trusted host without authentication.