On Mon, Oct 05, 2009 at 02:17:02PM -0700, Patrick Horgan wrote:
> My issue has to do with supporting our remote users. They've been told to
> create ssh tunnels for sending email (or any other contact with our
> server). That means that they send their mail to localhost, but get a cert
> for our fqdn. Of course we want the cert to have our fqdn because other
> mail servers will relay mail to us for delivery to our domain. Is there
> any way to make this work?
They can add the FQDN of your server to /etc/hosts (or similar) with
127.0.0.1 as the IP address, and use a different name to find the
IP endpoint for the SSH tunnels.
Otherwise, get their MUA to turn off certificate checks (and lose
MITM protection).
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:[email protected]?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
