Thomas, I agree that it's opportunistic, but I think the only time Astaro will skip TLS is if the other MTA won't do TLS. I remember about 3 years ago having trouble with the TLS implementation in Domino servers. The result was that the messages would not be sent by the Astaro until the target address was added to the TLS skiplist on the 'Advanced' tab.
So, my conclusion is that any business that cares about secure email will invest in a modern email server before investing time and energy in establishing individual encryption for all of its employees.
If someone from Astaro knows that this is incorrect, please let us all know!
Cheers - Bob
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
Thomas, I agree that it's opportunistic, but I think the only time Astaro will skip TLS is if the other MTA won't do TLS. I remember about 3 years ago having trouble with the TLS implementation in Domino servers. The result was that the messages would not be sent by the Astaro until the target address was added to the TLS skiplist on the 'Advanced' tab.
So, my conclusion is that any business that cares about secure email will invest in a modern email server before investing time and energy in establishing individual encryption for all of its employees.
If someone from Astaro knows that this is incorrect, please let us all know!
Cheers - Bob
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
