>>
>> CA certificate (root certificate) is installed on MUAs? If not MUA
>> can't validade server certificate.
>>
>>--
>>Reinaldo de Carvalho
>
> Yes, the clients have the CA cert and do properly validate the server
> certificate.
>
> That raises the question why the server logs the TLS connection
On Wed, Oct 22, 2008 at 10:23:33AM -0500, Noel Jones wrote:
> Yes, the clients have the CA cert and do properly validate the
> server certificate.
>
> That raises the question why the server logs the TLS
> connection as Anonymous. Maybe because postfix doesn't ask
> for a client certificate (
Reinaldo de Carvalho wrote:
Same thing here - *only* Anonymous TLS from Tbird, Eudora, and Windows
Mobile devices.
This is somewhat confusing to me since all those clients will complain when
the server certificate isn't valid, which is one reason we coughed up the
$15 for a real certificate.
>
> Same thing here - *only* Anonymous TLS from Tbird, Eudora, and Windows
> Mobile devices.
>
> This is somewhat confusing to me since all those clients will complain when
> the server certificate isn't valid, which is one reason we coughed up the
> $15 for a real certificate.
>
>
> --
> Noel
MrC wrote:
Victor Duchovni wrote:
It is interesting to see an MUA negotiate an anonymous session. Clearly
T-Bird did not care to ask for or verify the server certificate. Did
it require special configuration to enable this, or is this default
T-Bird behaviour?
I see the same in my logs - defau
>
> I see the same in my logs - default setup + submission port.
>
> Oct 21 22:00:53 glacier postfix/smtpd[2914]: Anonymous TLS connection
> established from zion.mikecappella.com[10.0.0.10]: TLSv1 with cipher
> DHE-RSA-AES256-SHA (256/256 bits)
>
>
>>
>> When I added support for anonymous TLS ciph
Victor Duchovni wrote:
>
> It is interesting to see an MUA negotiate an anonymous session. Clearly
> T-Bird did not care to ask for or verify the server certificate. Did
> it require special configuration to enable this, or is this default
> T-Bird behaviour?
I see the same in my logs - default s
On Tue, Oct 21, 2008 at 05:23:10PM -0400, Terry Carmen wrote:
> I just setup TLS and SASL to allow sending non-local mail only by
> authenticated users, and to have the entire SMTP conversation with the
> client software encrypted, and wanted to make sure it's operating correctly:
>
>
> The lo
On Tuesday, October 21, 2008 at 23:23 CEST,
Terry Carmen <[EMAIL PROTECTED]> wrote:
> I just setup TLS and SASL to allow sending non-local mail only by
> authenticated users, and to have the entire SMTP conversation with the
> client software encrypted, and wanted to make sure it's operating
I just setup TLS and SASL to allow sending non-local mail only by
authenticated users, and to have the entire SMTP conversation with the
client software encrypted, and wanted to make sure it's operating correctly:
The log from a session from my mail client (Thunderbird) says:
Oct 21 17:15:02
10 matches
Mail list logo