Yes, that's why I put the word "wrong" in quotes.
That's basically the procedure I use. More precisely, I use the scripts for
this that came bundled with OpenVPN 2.x.
I keep the keys on a separate, non-networked machine at home, on an
encrypted partition that I only mount when working with keys,
> From: j...@gapps.blu.org [mailto:j...@gapps.blu.org] On Behalf Of John
> Abreau
>
> Apparently I've been doing it "wrong" all these years. I've always created my
> own CA and signed my certificates with it, and I thought that's what the term
> "self-signed" meant.
That's the opposite of "doing
The important characteristic is whether or not the CA root private key is ever
exposed to any servers or clients. For example, if you used a self-signed cert
(no separate CA) on a server, that server requires the CA root private key in
order to serve webpages, and if you installed that cert
> From: Discuss [mailto:discuss-bounces+blu=nedharvey@blu.org] On
> Behalf Of Tom Metro
>
> > Ever-so-slightly better than no encryption.
>
> Huh? We're talking about using a self-signed cert for IMAP access, right?
>
> Self-signed certs have all the same cryptographic benefits as a CA
>
Apparently I've been doing it "wrong" all these years. I've always created
my own CA and signed my certificates with it, and I thought that's what the
term "self-signed" meant.
On Mon, Feb 1, 2016 at 5:50 PM, Edward Ned Harvey (blu)
wrote:
> > From: Discuss
Dovecot can be a little quirky about the location of INBOX. You can
specify it with the mail_location directive in Dovecot's local.conf file.
--
Rich P.
___
Discuss mailing list
Discuss@blu.org
http://lists.blu.org/mailman/listinfo/discuss
> From: Discuss [mailto:discuss-bounces+blu=nedharvey@blu.org] On
> Behalf Of David Kramer
>
> would
> it be reasonable and possible to use a self-signed cert for starters
Ever-so-slightly better than no encryption. The only difference is whether or
not it's possible for someone to
Edward Ned Harvey (blu) wrote:
>David Kramer wrote:
>> ...would it be reasonable and possible to use a self-signed cert for
>> starters...
>
> Ever-so-slightly better than no encryption.
Huh? We're talking about using a self-signed cert for IMAP access, right?
Self-signed certs have all the
If I were likely to want to set up other servers, I agree some
configuration management/deploy tool would make a lot of sense. I have
Puppet training, etc. I'm not sure if it makes sense for one individual
not getting paid for it to use it for one server. I *am* using git to
record changes
> From: Discuss [mailto:discuss-bounces+blu=nedharvey@blu.org] On
> Behalf Of David Kramer
>
> I also complicated
> things by trying to use an SSL certificate from https://letsencrypt.org
> instead of self-signed,
I'm a huge fan of free certs from https://startssl.com, and personally I don't
Quick update: Just yesterday I contracted with Verizon for residential
class triple play. Giving up static IP, but going from promised
16Mbps/? (actual 2Mbps/12Mbps) to promised 150Mbps/150Mbps and all told
about $100+ less per month.
I also got a server on Linode and set up Postfix/Dovecot.
On 01/31/2016 04:35 PM, David Kramer wrote:
> like Dovecot wasn't showing my "inbox" from /var/mail/
I would recommend you to use Maildir instead of mbox and dovecot + sieve
as LDA.
regards,
Nuno
--
___
Discuss mailing list
Discuss@blu.org
I thought "Inbox" was different, and even if you're using Maildir
instead of mbox, incoming mail still got delivered do /var/mail/$USERNAME.
So you say the problem is Postfix (or Dovecot, not even sure who is
saving the mail in this arrangement) is saving to /var/mail/$USERNAME,
not that
I made certain to go over the itemized costs from 0-6 months, 6-12
months, and 12 months and beyond. If the costs above and beyond that
are significant you can be sure I will complain. I did get the prices
for the set top boxes, etc.
Part of the math I did was the cost of power and
David Kramer wrote:
> Quick update: Just yesterday I contracted with Verizon for residential
> class triple play.
I'll be curious to see what level of service you get from the
residential class service.
I went through the quotation process for business class FIOS, and was
disappointed to see 30%
15 matches
Mail list logo