While reading through past messages I ran across the mail contained below which asks about SNI which has support in OpenSMTPD from what I've read, but there wasn't a reply to the question. It is something I'm interested to know if it can be done and if so, how? Thanks.
The original email:Hi, according to the release notes of 5.4.2 SNI should be supported however = the question is how since there is no mention of it in man smtpd.conf. I tried using multiple pki settings without specifing pki in the listen = option but all I get when testing is the following errors: Oct 29 11:12:07 de01 smtpd[65176]: smtp-in: Disconnecting session = 6af90a54317f3abd: CA failure When I explicitly specify "pki mail.domain1.tld" in the listen option it = works for that specific domain. Any ideas? Thanks, Michael smtpd.conf: pki mail.domain1.tld ca "/etc/ssl/certs/mail.domain1.tld.ca-bundle" pki mail.domain1.tld certificate "/etc/ssl/certs/mail.domain1.tld.crt" pki mail.domain1.tld key "/etc/ssl/private/mail.domain1.tld.key=E2=80=9C pki mail.domain2.tld ca "/etc/ssl/certs/mail.domain2.tld.ca-bundle" pki mail.domain2.tld certificate "/etc/ssl/certs/mail.domain2.tld.crt" pki mail.domain2.tld key "/etc/ssl/private/mail.domain2.tld.key=E2=80=9C table aliases file:/etc/mail/aliases table ldap ldap:/usr/local/etc/mail/ldap.conf listen on lo0 tls listen on lo0 port 587 tls-require auth listen on lo0 port 10028 tag DKIM accept for local alias <aliases> deliver to mbox accept tagged DKIM for any relay accept for any relay via smtp://127.0.0.1:10027
