> On Jan 25, 2018, at 5:52 PM, Bill Cole
> <[email protected]> wrote:
>
>> I found this discussion circa 2015 (
>> http://postfix.1071664.n5.nabble.com/postfix-and-multiple-TLS-certificates-td80968.html
>> ) which references the request, but it doesn't seem to have come into
>> fruition.
>
> That thread also has explanations by Wietse & Viktor of why SNI for Postfix
> is difficult both to justify and to safely implement.
>
>> This is not for outgoing SSL (which makes senses to come only from the
>> server), or for incoming mail (which would go to the MX record in question)
>> but for incoming mail submission, via SSL. The clients all support SNI, any
>> recent version of OpenSSL supports SNI.
>> Does postfix?
>
> No.
I'm tentatively planning to start work on SNI for Postfix 3.4 in April...
--
Viktor.
