On Fri, Oct 16, 2009 at 03:50:30PM -0400, Matt Friedman wrote:
> Thanks Brian,
>
> Sorry if my questions are a bit inane. Feel free to point me at
> reading material if I'm being too much of a noob.
>
> Ok, so based on what you are saying postfix can be made sufficiently
> secure without TLS or and SSL certificate.
>
> I'm thinking about when users login to fetch their email. How is that
> auth procedure made secure?
Users don't fetch their mail from Postfix, they do so from an IMAP
server. For an IMAP server, with more than just a handful of users (who
know how to configure trust in self-signed cert) you typically do need
an SSL/TLS cert. Once you have one, you can re-use for the submission
service too, if the same "hostname" is used for both.
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majord...@postfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
