Hi, thanks for the quick answer. :-)
Mark Crispin wrote: > UW imapd supports server certificates, and the UW c-client client code [...] > supports CA certificate validation of the server certificate. > UW imapd does not validate client certificates; but I do not know of any > IMAP client that supports client certificates so it doesn't matter. The Courier imapd supports client certificates. It's even possible to insist on a valid client certificate. The certificate, however, can't be used to authenticate a client (at least not to the very best of my knowledge.) The situation seems similar for the Cyrus imapd. I haven't tested it though. > IMAP clients authenticate to the IMAP server using SASL. I know, but if the users already have a valid certificate, they might use it for authentication as well. This saves one set of credentials (login + password for imap) to be taken care of. Bye -- Till -- Dipl.-Inform. Till Dörges PRESECURE (R) Researcher Consulting GmbH Phone: +49 (0)700 / PRESECURE [EMAIL PROTECTED] Treffen Sie uns auf dem DFN-CERT Workshop http://www.dfn-cert.de/events/ws/2004/ 3. und 4. Februar 2004, Hamburg