On Tue, Apr 20, 2010 at 05:58:23PM +0200, Jordi Espasa Clofent wrote:
> The cert is a wildcard certificate for *.example.com.
What SMTP server name is the MUA configured to use?
Does the MUA support wild-card certificates?
Which CA signed this certificate?
Does the MUA trust this CA?
> When the MUA (tested in Microsoft Outlook and Mazilla Thunderbird) tries to
> send email using this box, it show a warning about the cert. It happens
> when it try connection using STARTTLS (port 25) and also TLS/SSL (port
> 465).
What is the warning?
> The box is named mai.example.com, so I understand a wildcard certificate
> (*.example.com) should be enough.
Only if the MUA is configured to use an SMTP server in the "example.com"
domain, and it trusts the issuing CA, and the certificate has not expired
and has suitable key usage bits, and if the MUA supports wild-card certs.
--
Viktor.
P.S. Morgan Stanley is looking for a New York City based, Senior Unix
system/email administrator to architect and sustain our perimeter email
environment. If you are interested, please drop me a note.
