Re: [xmail] Looking for a good tls example.
That's what I was looking for. So it should be as simple as that? I created the server.key and server.cert as per the manual and put them into /var/MailRoot/ directory. They are named exactly as in the manual, server.key and server.cert. I have these settings configured in server.tab and restarted xmail SMTP-TLS 1 EnableCTRL-TLS0 EnableSMTP-TLS1 EnablePOP3-TLS0 The message doesn't go through to the recipient that I tested to encrypted. He's checking his end as well, but I don't see any indication in the logs that anything special is happening, will I? Thoughts? Bart Mortelmans wrote: On 15-dec-09, at 21:13, Dale wrote: I haven't actually implemented it. The problem is that I'm not sure where to put the settings. I'm not sure how to make my lack of understanding (or stupidity, your choice) any clearer. I guess the difficult part is that things will actually already work the moment the certs are available in the correct location (and you didn't explicitly turn it off) :-) Give the implementation a go! It should be easier to get working than you assume. ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
On Wed, 16 Dec 2009, Dale wrote: That's what I was looking for. So it should be as simple as that? I created the server.key and server.cert as per the manual and put them into /var/MailRoot/ directory. They are named exactly as in the manual, server.key and server.cert. I have these settings configured in server.tab and restarted xmail SMTP-TLS 1 EnableCTRL-TLS0 EnableSMTP-TLS1 EnablePOP3-TLS0 The message doesn't go through to the recipient that I tested to encrypted. He's checking his end as well, but I don't see any indication in the logs that anything special is happening, will I? Does the remote server support STARTTLS? - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
[xmail] Looking for a good tls example.
I'm looking for an example of implementing tls (smtp side). I've googled and found info, checked the config docs at http://www.xmailserver.org/Readme.html#ssl_configuration and went through the KB at Haralds site but haven't found any clear info on doing this. Can anyone point me to a sample config (server.tab and whatever else needs done)? It'd be great if anyone is overly ambitious and can whip up a sample config using the below example info. My xmail server: 12.2.26.110 Peer smtp server that I want to setup TLS for: 45.16.16.100 my key and cert name is mine.key and mine.cert the peer smtp server is using scott.key and scott.cert (if this matters). Thanks much! Dale ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
On Tue, 15 Dec 2009, Dale wrote: I'm looking for an example of implementing tls (smtp side). I've googled and found info, checked the config docs at http://www.xmailserver.org/Readme.html#ssl_configuration and went through the KB at Haralds site but haven't found any clear info on doing this. Do we even have to read your mind, to decypher what special thing you need to do, that the above documentation does not explain? - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
I was hoping you could read my mind. I'm not sure how to actually configure the TLS at all. I was hoping for a copy of a working server.tab that someone wouldn't mind sharing. Is it ONLY setup in the server.tab? It appears that the smtpgw may also into play. I don't see where you set it specifically for a single receiving domain. Davide Libenzi wrote: On Tue, 15 Dec 2009, Dale wrote: I'm looking for an example of implementing tls (smtp side). I've googled and found info, checked the config docs at http://www.xmailserver.org/Readme.html#ssl_configuration and went through the KB at Haralds site but haven't found any clear info on doing this. Do we even have to read your mind, to decypher what special thing you need to do, that the above documentation does not explain? - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
On Tue, 15 Dec 2009, Dale wrote: I was hoping you could read my mind. I'm not sure how to actually configure the TLS at all. I was hoping for a copy of a working server.tab that someone wouldn't mind sharing. Is it ONLY setup in the server.tab? It appears that the smtpgw may also into play. I don't see where you set it specifically for a single receiving domain. Did you even try to follow the instructions? If yes, what was not working? - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
Yep, I've read it and researched it before posting to the listserv. I haven't actually implemented it. The problem is that I'm not sure where to put the settings. I'm not sure how to make my lack of understanding (or stupidity, your choice) any clearer. Davide Libenzi wrote: On Tue, 15 Dec 2009, Dale wrote: I was hoping you could read my mind. I'm not sure how to actually configure the TLS at all. I was hoping for a copy of a working server.tab that someone wouldn't mind sharing. Is it ONLY setup in the server.tab? It appears that the smtpgw may also into play. I don't see where you set it specifically for a single receiving domain. Did you even try to follow the instructions? If yes, what was not working? - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
On Tue, 15 Dec 2009, Dale wrote: Yep, I've read it and researched it before posting to the listserv. I haven't actually implemented it. The problem is that I'm not sure where to put the settings. I'm not sure how to make my lack of understanding (or stupidity, your choice) any clearer. Create a certificate and remember to put the fully qualified host name to whoch your server IP resolves, in the Common Name (CN). - Davide ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
Re: [xmail] Looking for a good tls example.
On 15-dec-09, at 21:13, Dale wrote: I haven't actually implemented it. The problem is that I'm not sure where to put the settings. I'm not sure how to make my lack of understanding (or stupidity, your choice) any clearer. I guess the difficult part is that things will actually already work the moment the certs are available in the correct location (and you didn't explicitly turn it off) :-) Give the implementation a go! It should be easier to get working than you assume. ___ xmail mailing list xmail@xmailserver.org http://xmailserver.org/mailman/listinfo/xmail
