Am 29.06.2013 15:54, schrieb Charles Marcus:
>>> well, this is for dovecot 1.x, but have you tried it?
>>>
>>> Client certificate verification/authentication
>>> If you want to require clients to present a valid SSL certificate, you'll
>>> need these settings:
>>>
>>> ssl_ca_file = /etc/ssl/ca.p
Please do not top-post in an inline thread...
On 2013-06-29 2:38 AM, Ireneusz Szcześniak
wrote:
On 28.06.2013 23:34, Reindl Harald wrote:
Am 28.06.2013 23:31, schrieb Ireneusz Szcześniak:
I've been using Dovecot 2.1.8 on OpenBSD 5.2 i386 for about a month.
It works great. Dovecot serves IM
Ireneusz Szcześniak skrev den 2013-06-29 22:39:
With my config, Dovecot disallows logging in when the SSL connection
was established by a client without a certificate. In this case the
client gets to talk to Dovecot. The client could exploit potential
Dovecot vulnerabilities.
fair
Instead,
Ireneusz Szcześniak skrev den 2013-06-29 21:54:
Reindl, thanks again for your email, but now I realize that perhaps
you misunderstood my problem. I have got the SSL working with the
config presented in my first post. The problem is that I'm surprised
that Dovecot lets clients establish an SSL c
Thank you, Timo, for your detailed and authoritative response.
Now I know that my config is fine, and that I didn't miss some option.
Thanks again!
On 29.06.2013 23:25, Timo Sirainen wrote:
On 29.6.2013, at 23.39, Ireneusz Szcześniak wrote:
With my config, Dovecot disallows logging in when
On 29.6.2013, at 23.39, Ireneusz Szcześniak wrote:
> With my config, Dovecot disallows logging in when the SSL connection was
> established by a client without a certificate. In this case the client gets
> to talk to Dovecot. The client could exploit potential Dovecot
> vulnerabilities.
>
>
why are you refusing to understand that this is technical *nonsense*
how do you imagine that "and so the client doesn't get to talk with Dovecot"
by respect the dovecot configuration? damned inform you about network basics
and do not demand impossible things like "the daemon listens to a port but
With my config, Dovecot disallows logging in when the SSL connection
was established by a client without a certificate. In this case the
client gets to talk to Dovecot. The client could exploit potential
Dovecot vulnerabilities.
Instead, I want the SSL connection to be dropped by OpenSSL whe
Am 29.06.2013 21:54, schrieb Ireneusz Szcześniak:
> Reindl, thanks again for your email, but now I realize that perhaps you
> misunderstood my problem. I have got the
> SSL working with the config presented in my first post. The problem is that
> I'm surprised that Dovecot lets
> clients esta
Reindl, thanks again for your email, but now I realize that perhaps
you misunderstood my problem. I have got the SSL working with the
config presented in my first post. The problem is that I'm surprised
that Dovecot lets clients establish an SSL connection even when the
client doesn't present
Thanks for your email. Yes, I looked before at that website before.
I'm using these options with Dovecot 2.1.8, among others:
auth_ssl_require_client_cert = yes
ssl_verify_client_cert = yes
ssl_ca =
Am 28.06.2013 23:31, schrieb Ireneusz Szcześniak:
I've been using Dovecot 2.1.8 on OpenBSD 5.
Am 28.06.2013 23:31, schrieb Ireneusz Szcześniak:
> I've been using Dovecot 2.1.8 on OpenBSD 5.2 i386 for about a month. It works
> great. Dovecot serves IMAPS only,
> and I'm using Thunderbird to access my mail.
>
> I configured Dovecot to allow clients that present a valid certificate when
12 matches
Mail list logo
