On Thu, 2010-04-15 at 07:46 +0200, Andreas Schulze wrote:
> ssl = yes
> ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem
> ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem
> protocol imap {
> ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem
> ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem
> }
>
> Imagine the config if managesieve should use yet an oher cert...
> This is confusing while reading the config later.
>
> my wish:
> use one cert/key pair for all services
I don't really understand what you're asking. You can use the same
cert/key to all services, but of course that requires that either all of
them use the same hostname or you use alt names. Or are you thinking
something like:
ssl_cert = </etc/ssl/%s01.t6..
i.e. %s expanding to imap, pop3, etc? Maybe that could be done..
> or allow ssl only in a protocol section
I think you can do that already?
ssl = no
protocol imap {
ssl = yes
..
}
signature.asc
Description: This is a digitally signed message part
