From 35b1487d2af0d32f0bdd2a261c549851afccd09a Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 3 Sep 2020 07:48:42 +0000
Subject: [PATCH] postfix: Verify peer certificate for stunnel

---
 roles/postfix/templates/stunnel.conf.j2 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/roles/postfix/templates/stunnel.conf.j2 b/roles/postfix/templates/stunnel.conf.j2
index 1862909..09229c1 100644
--- a/roles/postfix/templates/stunnel.conf.j2
+++ b/roles/postfix/templates/stunnel.conf.j2
@@ -5,3 +5,5 @@ pid =
 accept = localhost:2525
 client = yes
 connect = {{ mail_server }}:465
+CAfile = {{ tls_bundle }}
+verify = 2