On 1/16/2012 4:32 PM, bilal ghayyad wrote: > Hi All; > >> Is it required to have the cert to be able to use the TLS? > >> * It depends primarily on the role: client or server. > > My question is: To both (cleint and server), do I need? Or only for server? > > > Regards > Bilal
Generally you must use a certificate for an SMTP MX server to offer TLS. It's also generally OK to use a self-signed certificate that you generate yourself. http://www.postfix.org/TLS_README.html#quick-start If this server will also be offering IMAP or POP3 mail service to end users, you might want to buy a real certificate so the end users don't get certificate warnings when they fetch their mail. You can still use a self-signed certificate for setup and testing, then switch to a purchased certificate later. There are lots of sources for low-cost certificates; they work just fine for mail. -- Noel Jones
