the problem is that you can't control what the client expects there are a lot of clients, recent and outdated
rule of thumbs: avoid all that domain-specific crap in caes of mail and just use and communicate "mail.yourdomain.tld" indepdendent what domains you are hosting - that scales and works in any case we are hosting some hundret mail-domains and have *one* servername Am 26.03.2014 22:51, schrieb Pau Peris: > Are you really sure? I mean, do you know where can i find information about > this topic? As i planned to operate > that way, buying cheap ssl certs for multiple domains/subdomains i would like > to be sure before discarding that > procedure. > > On Mar 26, 2014 9:28 PM, "Viktor Dukhovni" <postfix-us...@dukhovni.org > <mailto:postfix-us...@dukhovni.org>> wrote: > > On Wed, Mar 26, 2014 at 09:13:58PM +0100, Pau Peris wrote: > > > Common Name (CN) we.webeloping.es <http://we.webeloping.es> > > > > X509v3 Subject Alternative Name: > > DNS:webeloping.com <http://webeloping.com>, > > DNS:demo.webeloping.com <http://demo.webeloping.com>, > > DNS:imap.webeloping.com <http://imap.webeloping.com>, > > DNS:mail.webeloping.com <http://mail.webeloping.com>, > > DNS:smtp.webeloping.com <http://smtp.webeloping.com>, > > DNS:test.webeloping.com <http://test.webeloping.com>, > > DNS:we.webeloping.com <http://we.webeloping.com>, > > DNS:*.webeloping.com <http://webeloping.com> > > DNS:webeloping.es <http://webeloping.es>, > > DNS:*.webeloping.es <http://webeloping.es>, > > DNS:demo.webeloping.es <http://demo.webeloping.es>, > > DNS:imap.webeloping.es <http://imap.webeloping.es>, > > DNS:mail.webeloping.es <http://mail.webeloping.es>, > > DNS:smtp.webeloping.es <http://smtp.webeloping.es>, > > DNS:test.webeloping.es <http://test.webeloping.es>, > > DNS:we.webeloping.es <http://we.webeloping.es>, > > > > By "access my server from <some-domain>" I mean: > > Configuring a desktop email client to access IMAP and SMTP servers. > > s/from/as/ > > > we.webeloping.es <http://we.webeloping.es> and we.webeloping.es > <http://we.webeloping.es> respectively work > like a charm, while > > using imap.webeloping.es <http://imap.webeloping.es> and > smtp.webeloping.es <http://smtp.webeloping.es> makes > the email client show > > the typical SSL warning complaining about the host not being the common > name > > Well, now you know what not to do. :-( The mail client wants the server > name in the CN.
