On Wed, Mar 30, 2011 at 10:12:40PM -0700, [email protected] wrote:
> I was beginning to get that idea :-( I actually just read a coupld of
> post that you'd commented on about SNI (?), and that unless the clients
> are SNI-aware, not gonna help much. Also DNSSEC as an option
> (someday?), but way over my head right now.
>
> So, in addition to the SSL certs for mynet{1,2,3}.net I have a wildcard
> for *.mydomain.net.
Whatever single certificate works for you. Wildcard certs from real
CAs used to be expensive. If your cert is self-signed nobody cares
what names it contains. More typical (more affordable in most cases)
are SAN (subjectAltName) certs from real CAs that list multiple names.
> > Postfix queues mail by default when the destination is down.
>
> I didn't understand that from reading. So, what triggers the redeliver
> attempt? I'm guessing some timer/cron function in master/main config?
http://www.postfix.org/OVERVIEW.html#delivering
http://www.postfix.org/QSHAPE_README.html
--
Viktor.
