From owner-freebsd-ports@FreeBSD.ORG  Sun Mar 30 19:55:58 2014
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: freebsd-ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id C4F26E80;
 Sun, 30 Mar 2014 19:55:58 +0000 (UTC)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.19])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 6052C36C;
 Sun, 30 Mar 2014 19:55:57 +0000 (UTC)
Received: from [192.168.0.100] ([87.139.233.65]) by mail.gmx.com (mrgmx002)
 with ESMTPSA (Nemesis) id 0MMk99-1WPf8e3Ann-008e4b; Sun, 30 Mar 2014 21:55:55
 +0200
Message-ID: <533876D8.8020505@gmx.de>
Date: Sun, 30 Mar 2014 21:56:08 +0200
From: olli hauer <ohauer@gmx.de>
User-Agent: Mozilla/5.0 (Windows NT 5.1;
 rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: freebsd-ports@FreeBSD.org
Subject: Re: A child Postfix port with TLS enabled by default
References: <20140330192011.GA92763@jubz>
In-Reply-To: <20140330192011.GA92763@jubz>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Provags-ID: V03:K0:KIS1DNDG5Svx80TndGcF4QomPQPGGRNIwuh8fVDcn9FAYAkAnGZ
 GbgxacHmBrI8kTHw/NXoheHUaplaxoYNJkUwCCn9iHzfE5oP/bRe7mFb984pnC63njvE3SA
 kvQii4VFGMgGSjUbkhdin9u/mI4Sm0BtL4hQ5gulDPkr5xY8GKQcxDZrF7At0LFwPhNSpMn
 s8RX/nrIDzhywjSChIjxA==
Cc: bz@FreeBSD.org, Sahil Tandon <sahil@FreeBSD.org>
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 30 Mar 2014 19:55:58 -0000

On 2014-03-30 21:20, Sahil Tandon wrote:
> Some people have asked for TLS to be enabled by default in mail/postfix.
> I have been reluctant in order to abide by POLA, and to be consistent
> with how Wietse distributes Postfix upstream. Recently, bz@ proposed an
> alternative:
> 
>   http://people.freebsd.org/~bz/20140228-01-postfix-tls.diff
> 
> I updated the patch, primarly to adjust CONFLICTS:
> 
>   http://people.freebsd.org/~sahil/postfix-tls.diff
> 
> Because I have seldom worked with child ports, and mail/postfix is
> widely deployed, I would appreciate feedback from -ports before
> proceeding. If there is no opposition within a week or so, I will go
> ahead and commit.
> 

Hm,

the patch from bz@ should use this form

- OPTIONS_DEFAULT=PCRE TLS
+ OPTIONS_SLAVE=TLS

this way TLS is always ON for the slave and cannot switched OFF by accident

-- 
Regards,
olli