Posted in
The use of TLS is is discouraged for two reasons, the first being, that the information processed by GNARWL is public by definition, the second and more important one is the performance hit, cryptography produces.
Using TLS for transport layer security means, that every piece of mail, processed by GNARWL will force the loading of certificates and the exchange of keys between GNARWL and the database. This adds latency and combined with a slow/congested network it may lead to the mailsystem killing GNARWL processes because they take too long to finish, resulting in all kinds of undesired effects.
A better solution than using TLS is to setup a slave LDAP server on the mail server, which replicates the master's database.