I know that for outbound emails that were encrypted, there is a 1 at the end of the LOG_STAT
But how do you see if an inbound email fromt he internet was encrypted tot he ironmails? At the end of a log stat I see a |1|0
does this mean the inbound email came in via tls or does there need tob e a 1 at the enod of this just like outbound emails?
It isn't within ironmail, but typically to verify TLS I examine the headers on the received email itself and check the entry for the connection I care about. (e.g. external system to the Ironmail system.) These will indicate if it was TLS for that hop.