On 12/24/2010 12:13 AM, Justin Vallon wrote:
On 12/20/10 7:36 AM, Charles Marcus wrote:The client doesn't need the certificate to access the server, just to trust it. Ummm... yes, he/it does... since only secure connections are allowed, the cert *must* be accepted/installed/used *before* access to email is granted. Regardless, it could be a catch-22, in practice. In order to securely receive the *.crt, the certificate would need to be placed on a site under your control protected by https, which itself could not be self-signed. If you have a "real" https certificate, then you probably have a "real" imaps/smtps certificate. Self-signed certs are just as 'real' as those signed by a public CA like Verisign... they just haven't been 'verified' by said 3rd party CA. There is no reason to 'protect' the cert via https... it is only used to provide the encrypted connection, not proof of identity... And/or, if you cannot verify the unsigned certificate when prompted (I don't remember whether the iPhone lets you inspect it), you could send the certificate to a "personal" account, confirm the fingerprint, and install it. True... |
------------------------------------------------------------------------------ Learn how Oracle Real Application Clusters (RAC) One Node allows customers to consolidate database storage, standardize their database environment, and, should the need arise, upgrade to a full multi-node Oracle RAC database without downtime or disruption http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________ Courier-imap mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
