diff options
author | maxigas <maxigas@anargeek.net> | 2013-04-11 18:56:02 +0200 |
---|---|---|
committer | maxigas <maxigas@anargeek.net> | 2013-04-11 18:56:02 +0200 |
commit | 8eb6ab836f47061f4b80ac593dde8b49bd5b420e (patch) | |
tree | 0659651b7a459471f2dd25386e508496652ff588 | |
parent | 3a1720f42b78ce7f3d46d5993b504c55d9664890 (diff) | |
download | policy-8eb6ab836f47061f4b80ac593dde8b49bd5b420e.tar.gz policy-8eb6ab836f47061f4b80ac593dde8b49bd5b420e.tar.bz2 |
small change
-rw-r--r-- | best_practices.mdwn | 12 |
1 files changed, 2 insertions, 10 deletions
diff --git a/best_practices.mdwn b/best_practices.mdwn index f3c2df5..ae85b14 100644 --- a/best_practices.mdwn +++ b/best_practices.mdwn @@ -12,19 +12,11 @@ Obviously, every security/privacy level requires that you keep your software up #### Level 1 -### If the server adds the IP address of a user sending a mail through its service anywhere in the email, the user is informed about this. - -### The connections between the user and the server are always encrypted. - -### Use StartTLS to exchange mails with other servers whenever available. - -[StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) starttls with other compliant servers’, certs verified against cacert/… - -### The server must have its own SSL certificate signed by one of a given set of certificate authorities. See best practices documents for details. +… #### Level 2 -##### [StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) tls is required with other compliant servers’, certs verified with fingerprint +[StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) tls is required with other compliant servers’, certs verified with fingerprint ### Postfix |