From owner-freebsd-ports@FreeBSD.ORG Sun Mar 30 21:52:32 2014 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 648ABBF5 for ; Sun, 30 Mar 2014 21:52:32 +0000 (UTC) Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 319F9E9A for ; Sun, 30 Mar 2014 21:52:31 +0000 (UTC) Received: from compute4.internal (compute4.nyi.mail.srv.osa [10.202.2.44]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id E5945209D1 for ; Sun, 30 Mar 2014 17:52:30 -0400 (EDT) Received: from frontend2 ([10.202.2.161]) by compute4.internal (MEProxy); Sun, 30 Mar 2014 17:52:30 -0400 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=tandon.net; h=date :from:to:subject:message-id:reply-to:references:mime-version :content-type:in-reply-to; s=mesmtp; bh=nATz9PZBJ5Z7cPb4qgC2Jfuo De4=; b=dWJJngWADCrhJRVTjhagbfY4T9k6utRSQyBvetsZ+qPwOYMnkURNl0OH iw5MFBAgKuVT03mW98DUOyzP1e8TfCneaVRA+e0sqF3Y+amQBs4uUa6RvzaQ/wYv hIGrs7RrhxAokvNu+NRT7raNZp7Pey9Ml0WITIqtFlckqXD7z24= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=date:from:to:subject:message-id:reply-to :references:mime-version:content-type:in-reply-to; s=smtpout; bh=nATz9PZBJ5Z7cPb4qgC2JfuoDe4=; b=dOJpOZr2wvpZACPzQjuWiLtb9i7Q ZMNCZ5HeESbM5gLHq4pN/Q3CUfpDQxxj0vIc9jlo2D4JCh2PZXxS8q6WElItZALl QSnTpdoAkb5f3nDYmM+KaI3Hd2VZ4J4/GPPoT6IlN5kDAM3amONEjgUONKorQwyM 9K2XfFn7ka9FKjE= X-Sasl-enc: HgygqGlTuAuOsrxjeaMjrd/zqfn66tgsPCjFIlyCLekg 1396216350 Received: from jubz (unknown [68.174.190.55]) by mail.messagingengine.com (Postfix) with ESMTPA id A7B956800A4 for ; Sun, 30 Mar 2014 17:52:30 -0400 (EDT) Date: Sun, 30 Mar 2014 17:52:29 -0400 From: Sahil Tandon To: freebsd-ports@freebsd.org Subject: Re: A child Postfix port with TLS enabled by default Message-ID: <20140330215228.GB93840@jubz> References: <20140330192011.GA92763@jubz> <533876D8.8020505@gmx.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <533876D8.8020505@gmx.de> User-Agent: Mutt/1.5.22 (2013-10-16) X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list Reply-To: freebsd-ports@FreeBSD.org List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 30 Mar 2014 21:52:32 -0000 On Sun, 2014-03-30 at 21:56:08 +0200, olli hauer wrote: > On 2014-03-30 21:20, Sahil Tandon wrote: > > Some people have asked for TLS to be enabled by default in mail/postfix. > > I have been reluctant in order to abide by POLA, and to be consistent > > with how Wietse distributes Postfix upstream. Recently, bz@ proposed an > > alternative: > > > > http://people.freebsd.org/~bz/20140228-01-postfix-tls.diff > > > > I updated the patch, primarly to adjust CONFLICTS: > > > > http://people.freebsd.org/~sahil/postfix-tls.diff > > > > Because I have seldom worked with child ports, and mail/postfix is > > widely deployed, I would appreciate feedback from -ports before > > proceeding. If there is no opposition within a week or so, I will go > > ahead and commit. > > > > the patch from bz@ should use this form > > - OPTIONS_DEFAULT=PCRE TLS > + OPTIONS_SLAVE=TLS > > this way TLS is always ON for the slave and cannot switched OFF by accident OK, thanks. -- Sahil Tandon