> This text is about CLIENT certificates, that is:
>
> smtp_tls_cert_file
> smtp_tls_key_file
>
> You're making a concerted effort
Why do you say something like this?
> to confuse these with SERVER certificates,
> that is:
>
> smtpd_tls_cert_file
> smtpd_tls_key_fi
On Tue, Nov 06, 2012 at 09:08:02AM -0800, Ori Bani wrote:
> >> (so only want opportunistic encryption, no cert validation, etc) the
> >> TLS_README suggests that it's best to just leave blank
> >>
> >> smtpd_tls_cert_file
> >> smtpd_tls_key_file
> >
> > Can you site the specific text? I don't reca
>> smtp_tls_CAfile
>
> As for this, you typically don't need it and can leave it blank.
Same goes for smtp_tls_CApath I presume
Thanks again
On Tue, Nov 6, 2012 at 8:37 AM, Viktor Dukhovni
wrote:
> On Tue, Nov 06, 2012 at 01:06:22AM -0800, Ori Bani wrote:
>
>> smtpd_tls_security_level = may
>>
>> (so only want opportunistic encryption, no cert validation, etc) the
>> TLS_README suggests that it's best to just leave blank
>>
>> smtpd_tl
On Tue, Nov 06, 2012 at 01:06:22AM -0800, Ori Bani wrote:
> smtpd_tls_security_level = may
>
> (so only want opportunistic encryption, no cert validation, etc) the
> TLS_README suggests that it's best to just leave blank
>
> smtpd_tls_cert_file
> smtpd_tls_key_file
Can you site the specific tex
Using:
smtpd_tls_security_level = may
(so only want opportunistic encryption, no cert validation, etc) the
TLS_README suggests that it's best to just leave blank
smtpd_tls_cert_file
smtpd_tls_key_file
smtp_tls_CAfile/path
Question: so then does Postfix use some kind of internally generated
self
