On 2008-01-14 at 01:07 -0500, Daniel Aquino wrote:
> But why wouldn't localhost connections be aloud to get away without
> tls connects ?
Because you configured it that way.
server_advertise_condition needs to evaluate to true before the
authentication type is offered. The right-hand-side is a string
expansion. If you say "1", it's offered. If you say "$tls_cipher must
have been defined", then it's only advertised if TLS security is in
place.
If a connection from localhost is sufficient, then try:
server_advertise_condition = ${if or{\
{match_ip{$sender_host_address}{@[]}}\
{def:tls_cipher}}}
So either the IP address which the connection is coming from needs to be
one of the IP addresses of the host itself or $tls_cipher must have been
defined.
-Phil
