post...@io-labs.com:
> Oh, ok. So it is reassuring in a way, means that feature is there.
> I might have overlooked but i found no information in documentations
> about how to setup the SNI support. Is it also a part that is not
> yet updated?
> Thanks.
Possible search strategy: look for 'sni' in the SMTP client and
SMTP server manpages, or just enter 'sni' into the search box on
the Postfix website.
This reveals two parameters:
smtp_tls_servername (empty)
Optional name to send to the remote SMTP server in the TLS
Server Name Indication (SNI) extension.
tls_server_sni_maps (empty)
Optional lookup tables that map names received from remote SMTP
clients via the TLS Server Name Indication (SNI) extension to
the appropriate keys and certificate chains.
In the HTML version, each short summary links to a longer description
with 2-3 dozen lines of text.
In a system with over 1000 parameters it's hard to make a two-parameter
feature stand out. That's why we probably need some SNI entries in the
TLS_README table of contents (both client and server side) so that yje
parameters show up in the bigger picture.
Wietse
