diff options
author | Alyssa Ross <hi@alyssa.is> | 2021-01-12 15:50:51 +0000 |
---|---|---|
committer | Alyssa Ross <hi@alyssa.is> | 2021-01-14 11:17:56 +0000 |
commit | 99a9958bd33cf14de0e734d7d077f71adce09574 (patch) | |
tree | 9ffc0d3bdcc5aa405a0d25e1d07c8dcd3f280037 /nixpkgs/nixos/modules | |
parent | e581987d0fb8c572708f4bf66f7094334a94db0a (diff) | |
download | nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar.gz nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar.bz2 nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar.lz nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar.xz nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.tar.zst nixlib-99a9958bd33cf14de0e734d7d077f71adce09574.zip |
nixos/postfix: allow custom smtp_tls_security_level
I run Postfix on my workstation as a smarthost, where it only ever talks to my SMTP server. Because I know it'll only ever connect to this server, and because I know this server supports TLS, I'd like to set smtp_tls_security_level to "encrypt" so Postfix won't fall back to an unencrypted connection. (cherry picked from commit 9ed5ee909beede0ea3f04bc4d14449290aebed66)
Diffstat (limited to 'nixpkgs/nixos/modules')
-rw-r--r-- | nixpkgs/nixos/modules/services/mail/postfix.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixpkgs/nixos/modules/services/mail/postfix.nix b/nixpkgs/nixos/modules/services/mail/postfix.nix index fd4d16cdc37b..d777af2901e9 100644 --- a/nixpkgs/nixos/modules/services/mail/postfix.nix +++ b/nixpkgs/nixos/modules/services/mail/postfix.nix @@ -25,7 +25,7 @@ let clientRestrictions = concatStringsSep ", " (clientAccess ++ dnsBl); - smtpTlsSecurityLevel = if cfg.useDane then "dane" else "may"; + smtpTlsSecurityLevel = if cfg.useDane then "dane" else mkDefault "may"; mainCf = let escape = replaceStrings ["$"] ["$$"]; |