On Tue, 01 Jun 2010 16:20:56 +0200, Wietse Venema <wie...@porcupine.org>
wrote:
Eduardo Júnior:
But my box Postfix provides mail services to many domains and I created
a only SSL certificate with the name server as Common Name.
And I get many warnings because the Common Name in the certificate
doesn't match
the FQDN of the SMTP server configured on mail clients (outlook,
thunderbird, etc)
For example:
Common Name: myserver.domain.com
MX for domain1: smtp.domain1.com
MX for domain2: smtp.domain2.com
Then, how i configure SSL Certificates per domain on Postfix?
References?
How would Postfix know what certificate to use?
Hint: SMTP is not HTTP.
Wietse
Even HTTP wouldn't be able to handle this since it doesn't know the
hostname until after the SSL handshake when the request has been sent.
If clients support it, I suppose you could add SANs (subject alternative
names) to the certificate. It's a list of "alternative" hostnames covered
by the same certificate:
http://en.wikipedia.org/wiki/Subject_Alternative_Name
