Normally, SSL is not required for trusted connections (e.g. localhost), but submission-login did not follow this standard.
smtp_set.capabilities |= SMTP_CAPABILITY_STARTTLS;
smtp_set.hostname = subm_client->set->hostname;
smtp_set.login_greeting = client->set->login_greeting;
- smtp_set.tls_required = (strcmp(client->ssl_set->ssl, "required") == 0);
+ smtp_set.tls_required = !client->secured &&
+ (strcmp(client->ssl_set->ssl, "required") == 0);
smtp_set.xclient_extensions = xclient_extensions;
smtp_set.debug = client->set->auth_debug;