diff options
| -rw-r--r-- | best_practices.mdwn | 12 |
1 files changed, 2 insertions, 10 deletions
diff --git a/best_practices.mdwn b/best_practices.mdwn index f3c2df5..ae85b14 100644 --- a/best_practices.mdwn +++ b/best_practices.mdwn @@ -12,19 +12,11 @@ Obviously, every security/privacy level requires that you keep your software up #### Level 1 -### If the server adds the IP address of a user sending a mail through its service anywhere in the email, the user is informed about this. - -### The connections between the user and the server are always encrypted. - -### Use StartTLS to exchange mails with other servers whenever available. - -[StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) starttls with other compliant servers’, certs verified against cacert/… - -### The server must have its own SSL certificate signed by one of a given set of certificate authorities. See best practices documents for details. +… #### Level 2 -##### [StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) tls is required with other compliant servers’, certs verified with fingerprint +[StartTLS-exim](http://aland.burngreave.net/archives/2009/12/30/index.html#e2009-12-30T16_26_49.txt) tls is required with other compliant servers’, certs verified with fingerprint ### Postfix |